Skip to main content

Certificate is not trusted because its self signed

Bloke2
Recently when I log into Cpanel for accounts I get this message on Firefox. "Your connection is not secure. The owner of 100.00.00.10 (example) has configured their website improperly. To protect your information from being stolen, Firefox has not connected to this website. Ip address 100.00.00.10:2087(example) uses an invalid security certificate." Do I need to fix anything? I save the exception and it goes away. I know before there were a few self signed certificates that were expiring and I thought they auto renew for Cpanel.

Comments

10 comments

Date Votes
  • cPanelMichael
    Hello :) It's a normal message if you have installed a self-signed certificate. You will need to install a signed certificate if you prefer to avoid this warning. Note that some users are now using "Let's Encrypt" for their signed certificates: [How-To] Installing SSL from Let's Encrypt Thank you.
    0
  • Bloke2
    I was referring to the certificates for exim, cpanel, dovecot, and ftp. I was getting messages these would expire. But also they would automatically renew. My certificate for my store and website are fine.
    0
  • cPanelMichael
    The self-signed service certificates will automatically renew, but note it's a new self-signed certificate so your browser may issue the warning again. Thank you.
    0
  • Bloke2
    Ok so I didn't have to set them up, this is how it is supposed to be? The warning in my browser went away after made the exception and clicked ok.
    0
  • storminternet
    Great but it's better to install the ssl certificate from trusted ssl authority. Recommendation is to install ssl on server hostname which then can be used on other services. Users generally ask when they want to access emails at secure ports.
    0
  • cPanelMichael
    Ok so I didn't have to set them up, this is how it is supposed to be? The warning in my browser went away after made the exception and clicked ok.

    Yes, that is by design. However, as mentioned in the previous post, a signed certificate is typically advised so it's from a trusted authority, and visitors are not presented with a warning. Thank you.
    0
  • Bloke2
    Where do I get certificates for exim, cpanel, dovecot, and ftp?
    0
  • cPanelMichael
    New Where do I get certificates for exim, cpanel, dovecot, and ftp?

    You can purchase a certificate for these services from anywhere you would purchase a certificate for a domain name. There's no special certificate that's required. You can install the certificate via "WHM >> Manage Service SSL Certificates" as documented at: Manage Service SSL Certificates - Documentation - cPanel Documentation Thank you.
    0
  • Bloke2
    Ok. So I have to have a separate certificate for the website eCommerce, and another for the other services such as exim, cpanel, dovecot, and ftp?
    0
  • cPanelMichael
    New Ok. So I have to have a separate certificate for the website eCommerce, and another for the other services such as exim, cpanel, dovecot, and ftp?

    You can use the same certificate if you want to use the same hostname for your services that you use for your domain name. However, most of the time the certificate for the services is for the hostname of the server because it's the certificate that all domain names on the server use when accessing the service. Thank you.
    0

Please sign in to leave a comment.

Didn't find what you were looking for?

New post