Skip to main content

UPS-417 AutoSSL not polling for new certs

Comments

16 comments

  • cPanelAnthony
    This sounds like an issue we are actively working on and is known. Does the
    0
  • dstana
    This sounds like an issue we are actively working on and is known. Does the
    0
  • cPanelAnthony
    Not even remotely close. That says the certificates are renewing 3 days before expiration. This issue is certificates not renewing at all, if you look in that log you can see the cert that was renewed was already expired. ERROR Certificate expiry: 11/28/21, 12:00 AM UTC (3.83 days ago)

    My apologies. Could you open a support ticket using the link in my signature so we can investigate further? Please provide me with the ticket ID once you do so.
    0
  • dstana
    My apologies. Could you open a support ticket using the link in my signature so we can investigate further? Please provide me with the ticket ID once you do so.

    Ticket submitted
    0
  • dstana
    For the record, this was resolved with 100.0.5 that hit today.
    0
  • cPanelAnthony
    For the record, this was resolved with 100.0.5 that hit today.

    I'm happy to hear it! Thank you for the confirmation.
    0
  • Kailash1
    This is not resolved 100% in 100.0.5. It is still failing to pull or renew all SSL certificates. Is anybody else facing the same issue?
    0
  • kevinlevin
    Same here, on a server running 100.0.5 and using cpanel powered by Sectigo - SSL cannot be renewed for clients.
    0
  • Reado
    Same here - new server, new SSL certificate. Running 100.0.5 but AutoSSL is only creating self-signed certificates but never actually polling for cPanel-signed certificates. When I run the check SSL certificates script, it hangs for what feels like a minute before completing but not actually installing any certificates! We have a 15-day migration license at the moment but unable to migrate anything without working SSL certificates.
    0
  • cPanelAnthony
    Today Sectigo is undergoing maintenance on their systems which has led to delays in certificates being issued. We have more information and you can follow the page for updates about this here:
    0
  • nlaruelle
    Thanks @cPanelAnthony. Upgrading cPanel to 100.5 without reboot and doing the commands in these posts help me out : - I hope this help the community.
    0
  • 4u123
    Yes we are having this problem too - even on 100.5 When you view the daily AutoSSL log for all users you will see that it identifies the certificate needs renewing but after it has checked DCV it does not say the following... " AutoSSL will request a new certificate. " That process is missing from the daily checks and certificates are not being renewed. If you run a check manually on a user - at the same point in the log you see the additional line " AutoSSL will request a new certificate. " and immediately the certs go into pending queue.
    0
  • cPanelAnthony
    Yes we are having this problem too - even on 100.5 When you view the daily AutoSSL log for all users you will see that it identifies the certificate needs renewing but after it has checked DCV it does not say the following... " AutoSSL will request a new certificate. " That process is missing from the daily checks and certificates are not being renewed. If you run a check manually on a user - at the same point in the log you see the additional line " AutoSSL will request a new certificate. " and immediately the certs go into pending queue.

    Would you be able to open a ticket using the link in my signature? This would warrant a further look if still an issue.
    0
  • Benjamin D.
    Same issue here, ever since on v100.0.5 a few domains SSL certs are past expiration and many are expiring soon. Please help
    0
  • cPanelAnthony
    Same issue here, ever since on v100.0.5 a few domains SSL certs are past expiration and many are expiring soon. Please help

    Hello! Please see my above response; a ticket would be needed.
    0
  • InterServed
    This helped us solve this problem on quite a few cPanel servers. This will reset and issue new certificates that covers the server hostname and services like ftp,exim,dovecot,cpanel for service in ftp exim dovecot cpanel ; do whmapi1 reset_service_ssl_certificate service=$service ; done ; /scripts/restartsrv_ftpd ; /scripts/restartsrv_dovecot ; /scripts/restartsrv_exim ; /scripts/restartsrv_cpsrvd ; /usr/local/cpanel/bin/checkallsslcerts --verbose --allow-retry ; /usr/local/cpanel/bin/checkallsslcerts --allow-retry
    0

Please sign in to leave a comment.