Skip to main content

SSL Error

sajithgsm
Hi, Since today, I'm getting this error on each cpanel. The certificate has the following errors: Certificate #4 (CN=DST Root CA X3,O=Digital Signature Trust Co.) has 1 validation error: CERT_HAS_EXPIRED. how can I fix this? But when I go to the SSL / TLS Status, its showing very normal and in browsers, SSL green lock also working very fine. Do you have any idea how to fix this? I'm using Lets Encrypt SSL.

Comments

15 comments

Date Votes
  • Jhosman
    Hello I'm too affected, cPanel inc, and relation with the expiration of root certificate: Chain of Trust - Let's Encrypt
    0
  • mtindor
    Same here. On all domains on the server. For instance, if I go to with a valid SSL certificate for
    0
  • smurf
    Let's Encrypt Root CA X3 expiry is the issue. LE announced it in April 2021:
    0
  • sajithgsm
    Let's Encrypt Root CA X3 expiry is the issue. LE announced it in April 2021:
    0
  • Jhosman
    Do you have any easy method to fix this on WHM?

    Change the SSL provider to cPanel Sectigo and Run AutoSSL (temporal)
    0
  • monarobase
    cPanel support has told us it's a CloudLinux issue, are you running CloudLinux too ?
    0
  • mtindor
    cPanel support has told us it's a CloudLinux issue, are you running CloudLinux too ?

    I am running CL. CL6 ELS on the affected server. Although I have two other CL6 ELS servers not affected (thus far) and a CL8 server not affected (thus far). All of my CL6 ELS servers are running: Sep 20 11:35:32 Updated: openssl-1.0.1e-62.el6.cloudlinux.els.x86_64 Sep 20 11:35:33 Updated: openssl-devel-1.0.1e-62.el6.cloudlinux.els.x86_64 Sep 24 11:35:33 Updated: 1:ea-openssl11-1.1.1l-1.el6.cloudlinux.x86_64 Sep 24 11:35:34 Updated: 1:ea-openssl11-devel-1.1.1l-1.el6.cloudlinux.x86_64
    0
  • sajithgsm
    cPanel support has told us it's a CloudLinux issue, are you running CloudLinux too ?

    Yes. usign cloudlinux os.
    0
  • sajithgsm
    cPanel support has told us it's a CloudLinux issue, are you running CloudLinux too ?

    Yes. using cloudlinux os. But the datacenter told me, it is letsencrypt issue. I have no idea how to fix it now.
    0
  • monarobase
    CloudLinux checked the ca-certificates package but it's up to date on our CloudLinux 7 server : rpm -qa ca-certificates ca-certificates-2021.2.50-72.el7_9.noarch
    0
  • mtindor
    CloudLinux checked the ca-certificates package but it's up to date on our CloudLinux 7 server : rpm -qa ca-certificates ca-certificates-2021.2.50-72.el7_9.noarch

    Three CL6 ELS servers: ca-certificates-2020.2.41-65.1.el6_10.noarch One CL8 server: ca-certificates-2021.2.50-80.0.el8_4.noarch So far (knock on wood) only one of my four servers is affected (a CL6 ELS box). But who knows if more/all will be affected eventually.
    0
  • mtindor
    I've got a ticket open with the DC, and with CL (because cPanel is not providing the CL license for this particular server and insists that I open tickets with everyone else first, and them as a last resort).
    0
  • quietFinn
    I switched from Let's Encrypt to Sectigo, ran Upgrade to Latest Version and then Run AutoSSL For All Users. After that it seems to be working. CloudLinux 6 & 7 servers.
    0
  • cPRex Jurassic Moderator
    I'll be posting all updates in the main thread at
    0
  • PhxChris
    Seeing the same issues here. Running CentOS Linux 7. Trying to get a Sectigo SSL certificate for one of my domains, but it looks like the Sectigo servers are overloaded at the moment.
    0

Please sign in to leave a comment.

Didn't find what you were looking for?

New post