Skip to main content

[CPANEL-27774] Force HTTPS option disabled and cannot be enabled

Comments

18 comments

  • kernow
    Check the domain your trying to force to use https already has an SSL/TLS certificate.
    0
  • RonanRBR
    Check the domain your trying to force to use https already has an SSL/TLS certificate.

    Yes, the domain has a valid certificate, generated by AutoSSL that is enabled, the certificate was issued by cPanel, and another domain has a certificate issued by another authority.
    0
  • cPanelMichael
    Hello @RonanRBR, Can you open a
    0
  • yaashul
    I am facing the exact issue. Did anyone find any solution? (using whm/cpanel 80.0.15 with SSL certificate from AutoSSL)
    0
  • RonanRBR
    I am facing the exact issue. Did anyone find any solution? (using whm/cpanel 80.0.15 with SSL certificate from AutoSSL)

    In my case I needed to open a ticket, my problem was a custom Apache configuration file. Then support applied a patch path to restore the default configuration file. Unfortunately, I think you need to open a support tcket, or try to manually restore the apache configuration files, but I do not recommend the second one.
    0
  • cPanelMichael
    Hello Everyone, Internal case CPANEL-27774 is open to address an issue where the specific reason why the Force HTTPS Redirect option is disabled in the cPanel UI. I'll monitor this case and update this thread with more information on it's status as it becomes available. In the meantime, here's a look at the potential reasons the Force HTTPS Redirect option is disabled in the cPanel UI: 1. The ea-apache24-config-runtime version is lower than 1.0-140. Here's an example of how to check the version of this RPM: rpm -qa|grep ea-apache24-config-runtime
    If you're using a lower version, run the "yum update" command to ensure you are using the latest EA4 RPMs. 2. The Allow cPanel users to install SSL Hosts option is disabled under the System tab in WHM >> Tweak Settings. 3. Mod_Rewrite is not installed. Here's the command to use to confirm that Mod_Rewrite is installed: httpd -M|grep rewrite
    If it's installed, the command output should look like this: # httpd -M|grep rewrite rewrite_module (shared)
    4. Custom Apache templates are overriding the the vhost.default Apache template. You can read about how custom Apache templates are configured on the link below: Custom Templates - EasyApache 4 - cPanel Documentation Thank you.
    0
  • samedwards
    Custom Apache templates are overriding the the vhost.default Apache template.

    This seems pretty heavy-handed. As you mentioned, there's a known version of ea-apache24-config-runtime that contains the correct config to enable this functionality. There's already code that checks the last modified date on custom templates to send a notification if the default versions are updated... all this together seems like there's an easy solution here. Heck, the template could even be searched for the correct config. As an outside alternative, there could even be a feature flag file to touch to enable this feature when custom templates are present. Can this request be folded in to this case, or should I open another one?
    0
  • cPanelMichael
    there's a known version of ea-apache24-config-runtime that contains the correct config to enable this functionality. There's already code that checks the last modified date on custom templates to send a notification if the default versions are updated... all this together seems like there's an easy solution here. Heck, the template could even be searched for the correct config. As an outside alternative, there could even be a feature flag file to touch to enable this feature when custom templates are present. Can this request be folded in to this case, or should I open another one?

    Hello @samedwards, This feedback is more suitable for our
    0
  • cPanelLauren
    Hello, I just wanted to update that the internal case associated with this issue was marked as done due to being unable to be replicated. Looking back through the thread it appears there was custom templates involved that created the complication. If you are still experiencing this issue and you have not made customizations to the apache server please provide detailed replication steps.
    0
  • zikridaud
    Hello, I just wanted to update that the internal case associated with this issue was marked as done due to being unable to be replicated. Looking back through the thread it appears there was custom templates involved that created the complication. If you are still experiencing this issue and you have not made customizations to the apache server please provide detailed replication steps.

    Hi, I have the same issue here. Can you advice what I should do? Thank you.
    0
  • cPanelLauren
    Please see the last response:
    Hello, I just wanted to update that the internal case associated with this issue was marked as done due to being unable to be replicated. Looking back through the thread it appears there was custom templates involved that created the complication. If you are still experiencing this issue and you have not made customizations to the apache server please provide detailed replication steps.

    0
  • rakoon200
    If the redirect process is not done properly, it will negatively affect your SEO: You can read the link below: [url=https://forums.cpanel.net/threads/how-to-redirect-https-to-https.668933/]How to redirect HTTP to HTTPs [url=https://forums.cpanel.net/threads/ssl-error.669669/]SSL Error
    0
  • sparek-3
    Came across this "feature" that I didn't even know about in end-user's cPanels but found it was grayed out. Found this thread, even though it's slightly outdated I thought it was still pertinent.
    2. The Allow cPanel users to install SSL Hosts option is disabled under the System tab in WHM >> Tweak Settings.

    Why? I mean... I get and understand that you shouldn't be able to force redirect to HTTPS without a valid certificate. But why is redirecting predicated on the end-user having the ability to install their own certificate? What's the thought process in this requirement?
    0
  • cPanelLauren
    There is actually a case open on this - I just checked into it too CPANEL-33234. It's my personal belief that you should not have to allow your users the ability to install SSL hosts in order to force redirection to https.
    0
  • stormy
    Is there any progress on this? On my servers some accounts have it working and some don't, and I can't see the reason why.
    0
  • Unnamed User

    any update on this i am facing the same issue  

    0
  • cPRex Jurassic Moderator

    Can you please open a ticket so we can see this behavior in action?

    0
  • Trademark

    Also facing the same issue. See my post here for more details.

    0

Please sign in to leave a comment.