"The cPanel (powered by Sectigo) provider cannot currently accept incoming requests."
Apparently this was an issue a couple of years ago, anyone know why it might be happening again? Thanks.
-Michael
-
these past few days, we have seen a LOT of these 2 errors (19 servers all running latest cpanel ver) 1 error The response to the HTTP (Hypertext Transfer Protocol) "POST" request from " indicated an error (500, Internal Server Error):
still having the 2nd error way too much.0 -
I am still getting this issue too. Seems Sectigo is completely broken - they can't handle the volume of requests and don't want to fix it - so why is cPanel bothering with Sectigo? Why not switch entirely to Let's Encrypt ? I am switching to Let's Encrypt for the domains that fail, but then I switch back inside the Manage SSL Hosts section, because I am also using the Sectigo cpanel service to renew hostnames ssl etc.... My understanding that cpanel does not allow that with Let's Encrypt. Is there a particular reason why not? Could we not just ditch sectigo altogether.... it seems their service is wholly unreliable.... 0 -
@WorkinOnIt - the AutoSSL provider is unrelated to the hostname certificate. You can permanently leave that on Let's Encrypt and your hostname certificate will still be issued through Sectigo normally. 0 -
@WorkinOnIt - the AutoSSL provider is unrelated to the hostname certificate. You can permanently leave that on Let's Encrypt and your hostname certificate will still be issued through Sectigo normally.
Aha that's good to hear! I assume this is a recent change, because I am sure I had that correct previously it was tied to Sectigo? But this is the message I see inside the Manage Auto SSL screen, when I enable Let's Encrypt: [QUOTE] Current Provider: Let"s Encrypt" Please Note: The Let"s Encrypt" provider plugin does not generate hostname certificates for your system"s services. It only generates SSL certificates for your cPanel accounts. For more information, read our Let"s Encrypt" plugin documentation. I took that to be a warning that if I use Let's Encrypt, I will no longer get automated Hostname / system services SSLs ? I guess this could be worded differently if not... Please clarify?0 -
I am still getting this issue too. Seems Sectigo is completely broken - they can't handle the volume of requests and don't want to fix it - so why is cPanel bothering with Sectigo? Why not switch entirely to Let's Encrypt ? I am switching to Let's Encrypt for the domains that fail, but then I switch back inside the Manage SSL Hosts section, because I am also using the Sectigo cpanel service to renew hostnames ssl etc.... My understanding that cpanel does not allow that with Let's Encrypt. Is there a particular reason why not? Could we not just ditch sectigo altogether.... it seems their service is wholly unreliable....
we are having this issue, way too often, every single day on almost all servers... ssls not being issued.. ssls not being renewed... if Cpanel can confirm that the Hostname SSL will still be issued and renewed if we change AutoSSL to Lets Encrypt, then we will do the jump0 -
the AutoSSL provider is unrelated to the hostname certificate. You can permanently leave that on Let's Encrypt and your hostname certificate will still be issued through Sectigo normally.
if Cpanel can confirm that the Hostname SSL will still be issued and renewed if we change AutoSSL to Lets Encrypt, then we will do the jump
@JoseDieguez yes you can make the jump see first quote from cPRex above.0 -
Correct - even with the switch the Let's Encrypt the hostname certificate is still processed through Sectigo. That isn't a change, but has been standard behavior since AutoSSL was introduced. 0 -
Correct - even with the switch the Let's Encrypt the hostname certificate is still processed through Sectigo. That isn't a change, but has been standard behavior since AutoSSL was introduced.
Awesome - that means we can switch, and will see how it goes. thanks for confirming. You may want to get someone to update the text: Hostname certificates will continue to be automatically provided by Sectigo in a default setup.... For more information, read our0 -
We switched to LetsEncrypt on every server, no reason to look back. 0 -
@WorkinOnIt - what needs to be changed in the documentation? 0 -
How is this STILL happening? It's August 2022 now and I am still encountering these errors. 0 -
Hello, WHM 104.0.8 - Having the same issue on a couple of sites, posted one domain error below. Sectigo IP was already allowed. Getting different errors for each retry [QUOTE] ERROR AutoSSL failed to request an SSL certificate for "shahnishit.com" because of an error: (XID e3ufdz) The response to the HTTP (Hypertext Transfer Protocol) "POST" request from " indicated an error (500, Internal Server Error): ERROR AutoSSL failed The "cPanel (powered by Sectigo)" provider cannot currently accept incoming requests. The system will try again later. After a couple of retries with a time gap of 30 minutes to 1 hour started getting Service Unavailable error. ERROR AutoSSL failed to request an SSL certificate for "shahnishit.com" because of an error: (XID n3kb7h) The cPanel Store returned an error (X::UnknownError) in response to the request "POST ssl/certificate/free": Service Unavailable 0 -
Yes, facing the same issue. To get the SSL renewed/installed we have to try multiple times. 0 -
LetsEncrypt rate limits requests so while that might be the best advice, it's not acceptably good advice because it produces the same result: sites with no valid certificates. I have angry clients who now have expired certificates banging on my support line. Passing that along. Hoping I will be able to give them an acceptable answer soon. @nshah14285 - the best advice is to try switching to the Let's Encrypt SSL provider:
0 -
FWIW, I've had a similar-but-different error for the last few days: The system failed to acquire a signed certificate from the cPanel Store because of the following error: (XID d56kaj) The cPanel Store returned an error (X::TemporarilyUnavailable) in response to the request "POST ssl/certificate/whm-license/90-day": We were unable to process your request. Please try again later. I consider switching to LE to be a last resort because of the rate limit (same as @LoadFactor), but if it must be done temporarily then it is what it is. 0 -
@nshah14285 - the best advice is to try switching to the Let's Encrypt SSL provider: X::TemporarilyUnavailable try issuing using LE instead
0 -
Honestly, given how many issues we encounter lately with sectigo, cpanel should either remove them as the default provider, or work with sectigo to fix their issues. Although they're the default and are considered "superior" by cpanel (in the description), i see that everytime someone has an issue, cpanel recommends installing and switching to LE. Then why not include them by default? 0 -
LE rate limits requests, which is why we switched to Sectigo. Now Sectigo's reliability is spotty. One (preferably more than one) fallback seems to be the best approach since even without rate limits or capacity problems, it's still possible for a provider to be unavailable. Honestly, given how many issues we encounter lately with sectigo, cpanel should either remove them as the default provider, or work with sectigo to fix their issues. Although they're the default and are considered "superior" by cpanel (in the description), i see that everytime someone has an issue, cpanel recommends installing and switching to LE. Then why not include them by default?
0 -
Any idea what other solutions are being looked at by any chance?
That part I don't know. As far as to "why isn't LE the default yet" - as @LoadFactor said, they do have more strict ratelimits in place. All I can confirm is that we're exploring multiple options for the future at this point.0 -
After retrying several times to request a SSL and getting the failure message, I did a graceful restart and attempted again, and it worked! Not the best way to address it, but with no other easy options, it was worth a try. 0 -
A reboot wouldn't change the behavior of the AutoSSL tools, so that's not something I'd recommend. The timing of it working after the reboot is purely a coincidence. 0 -
I'm having the same problem too, in all my cPanel servers. The "cPanel (powered by Sectigo)" provider cannot currently accept incoming requests. The system will try again later. I had to develop a script to check all SSL's once a day, because I had 2 websites offline (clients) due to expired certificate. 0 -
Let's be frank... the cPanel licenses increased significantly over the last year or two... and you took your profits. That's fine. However, there is an implicit agreement here, and that is that providing SSL certificates is part of that arrangement. You now have an issue with a partner in YOUR agreement... and they are apparently having trouble fulfilling their responsibilities.... which is leaving cPanel having difficulty fulfilling their duty to those of us who purchased licenses. "...exploring multiple options for the future at this point" is not a reassuring comment on how you plan to address this serious failure in the product's performance. It does appear to me, at least, that cPanel is taking this matter rather casually right now... not at all as seriously as they regarded their need to increase prices. Is your position one of "too bad... wait it out"... because we have little choice? If I might suggest, cPanel should get on the ball, issue an official statement, and reassure those of us who have paid for the service that you are working diligently on a rapid solution to a serious problem. My direct financial relationship in this situation is with my server provider, not cPanel, so I will be putting the heat on them which I'm trusting they will pass on to cPanel.... and which every server provider using cPanel should be doing. It is unsettling to read the forum comments on this serious failure of service... and find that it does not appear to be regarded as such by cPanel. It certainly makes evident the dangers of a lack of competition. With all due respect... I love your software and how much easier it makes my day when it comes to managing our server group.,,, and I accepted the price increases w/o complaint, all things considered. Please don't now start leaving me with questions regarding your concern for your responsibility to fix this issue... and fix it quickly. 0 -
@coolcom - I've passed this feedback along to some "higher ups." 0 -
For what it's worth, I am a loooooong time user of cPanel and more recently WHM, I host 300+ websites and yes I do get this issue too and it can be frustrating, however I just sit and try again and after 4 or 5 attempts it goes through, it's not a massive issue. Some people above venting their anger and frustration, and that's fine, but i'd understand this more if AutoSSL just didn't work full stop, that's not the case, it does work, you just have to be a bit persistent until the issue is resolved. Keep up the good work cPanel! 0 -
Interesting.... why would one have to be persistent if the process was working automatically? As you stated... you have to manually try again 4 or 5 times.... that is not auto. My experience has been similar... I have to retrigger the renewal a few times manually. However, until this started to happen repeatedly... I was not even aware that it was the problem or that there was even a suggestion on how to mitigate for now. I had to wait for clients to tell me their sites were having SSL issues. I totally understand the difficulties suppliers face on the net... it's the lack of communication with customers on these issues that results in the frustration and venting you noted. The old days of "saving face" have no place in this digital environment, nor does a "need to know" policy. And on the other hand... any customer who believes there should never be any problems is just as naive, If I have a server go down, I notify my user base... give a short explanation of the issue if possible, give them an ETA (or even an "I don't know right now")... and then let them know as soon as things are back up. Sure, some are still upset... but they are informed. My server provider did contact cPanel and then got back to me.. excellent, The cPanel rep relayed an explanation of the issue to the best of his ability... that a limit had been imposed by Sectigo (apparently there are articles on this?) and that he was currently unable to find exactly what was being done about it (if anything at all) right now. That's honest... and I guess explains the "...exploring multiple options for the future at this point..." statement. Your simple suggestion of manually retrying the update a few times to get the new cert installed was more informative than anything coming out of the supply chain. Thank-you. So again.... communication. 0 -
For what it's worth, I am a loooooong time user of cPanel and more recently WHM, I host 300+ websites and yes I do get this issue too and it can be frustrating, however I just sit and try again and after 4 or 5 attempts it goes through, it's not a massive issue. Some people above venting their anger and frustration, and that's fine, but i'd understand this more if AutoSSL just didn't work full stop, that's not the case, it does work, you just have to be a bit persistent until the issue is resolved. Keep up the good work cPanel!
sure, if you can just "sit an try over and over" for the 3 clients between those 300 websites.. or 30 clients between 3.000 websites or 300 clients between 30.000 websites, etc.0
Please sign in to leave a comment.
Comments
231 comments