[CPANEL-29596] Let's Encrypt - 400 Bad Request
Hello Everyone,
Following Let's Encrypt CDN update (New CDN for the Production API), we have received a number of reports regarding
errors (visible in WHM >> Home >> SSL/TLS >> Manage AutoSSL) on cPanel & WHM servers using the Let's Encrypt plugin. This is blocking the successful installation of new SSL certificates on affected systems. We are currently tracking these reports as part of internal case CPANEL-29596. To ensure SSL certificates continue to issue successfully, the temporary workaround is to switch from Let's Encrypt to cPanel (Powered by Sectigo) via the "Providers" tab in WHM >> Manage AutoSSL:
400 Bad Request
errors (visible in WHM >> Home >> SSL/TLS >> Manage AutoSSL) on cPanel & WHM servers using the Let's Encrypt plugin. This is blocking the successful installation of new SSL certificates on affected systems. We are currently tracking these reports as part of internal case CPANEL-29596. To ensure SSL certificates continue to issue successfully, the temporary workaround is to switch from Let's Encrypt to cPanel (Powered by Sectigo) via the "Providers" tab in WHM >> Manage AutoSSL:
-
We have identified the incompatibility with Let's Encrypt's new CDN and we are working on publishing an update to resolve the issue. 0 -
Hello, This morning the certificate on our server was not renewed due to this error. 5:34:46 PM WARN "Let"s Encrypt"" DCV error (................): The ACME function " indicated an error: " 400 Bad Request
400 Bad Request
nginx " (400, "Bad Request", ). WARN "Let"s Encrypt"" DCV error (................): Cpanel::Exception::ACME::Protocol/(XID .....) The ACME function " indicated an error: " 400 Bad Request400 Bad Request
nginx " (400, "Bad Request", ).
The Apache server How can we solve this problem? I found this report on the support forum letsencrypt0 -
that explains a lot, been struggling with certificates for 3 hours now. started from scratch several time. Have now installed self signed. Errors I get are very similar (repliced the site with "website" in the error log below: any solution in sight? 6:01:29 PM AutoSSL"s configured provider is "Let"s Encrypt"". Checking websites for "u1900902a" " 6:01:29 PM Analyzing "website" " 6:01:29 PM User-excluded domains: 4 (mail.website webmail.website.hi.is, cpanel.website.hi.is, webdisk.website.hi.is) ERROR TLS Status: Defective Certificate expiry: 9/23/20, 5:29 PM UTC (364.98 days from now) ERROR Defect: OPENSSL_VERIFY: The certificate chain failed OpenSSL"s verification (0:18:DEPTH_ZERO_SELF_SIGNED_CERT). 6:01:29 PM Performing DCV (Domain Control Validation) " 6:01:29 PM Redirection #1 (website): Local HTTP DCV OK: website Redirection #1 (www.website): Local HTTP DCV OK: www.website 6:01:29 PM Analyzing "website""s DCV results " 6:01:29 PM No CAA record added because there is no CAA record from another provider in the DNS for website. 6:01:32 PM WARN "Let"s Encrypt"" DCV error (website): The ACME function " indicated an error: " 400 Bad Request
400 Bad Request
nginx " (400, "Bad Request", ). WARN "Let"s Encrypt"" DCV error (website): Cpanel::Exception::ACME::Protocol/(XID y9repz) The ACME function " indicated an error: " 400 Bad Request400 Bad Request
nginx " (400, "Bad Request", ). WARN "Let"s Encrypt"" DCV error (www.website): The ACME function " indicated an error: " 400 Bad Request400 Bad Request
nginx " (400, "Bad Request", ). WARN "Let"s Encrypt"" DCV error (www.website): Cpanel::Exception::ACME::Protocol/(XID bvg26z) The ACME function " indicated an error: " 400 Bad Request400 Bad Request
nginx " (400, "Bad Request", ). ERROR Impediment: TOTAL_DCV_FAILURE: Every domain failed DCV. 6:01:32 PM The system has completed the AutoSSL check for "u1900902a".0 -
Try. yum clean all yum update cpanel-letsencrypt
0 -
Thank you very very much and the solution was the obvious one. Worked like a charm. What I had already done was to install a wildcard certificate from globalsign (which though does not work for www in front of the domain name, that's why I wanted letsncrypt) What I had to do was 1. yum clean all 2. yum update cpanel-letsencrypt 3. remove the globalsign certificate 4. run the auto ssl again thanks again for a super quick reply. 0 -
Solved :) Thanks 0 -
[CODE=rich]yum clean all yum update cpanel-letsencrypt
Thank you. Worked!!!0 -
No package cpanel-letsencrypt available.
0 -
Vitalii Kharytinov - this thread is five years old, and cPanel no longer uses Let's Encrypt on new systems. If you're having a problem with the AutoSSL system, please start a new thread with more details about your issue.
0 -
we have a problem with cpanel nginx and error 400. and cpanel supprort who says "we don't see it, so everything is fine" is not fine. is random issue but very often. 30238 errors last day
0 -
It still would have been best to start a new thread........could you share your ticket number here so I can see that?
0
Please sign in to leave a comment.
Comments
13 comments