Something weird with auto SSLs

rinkleton

• July 11, 2017 15:49

I have two accounts that had auto-ssls (cpanel) that expired a few days ago. It looks like auto ssl renewed them successfully, but I'm intermittently getting failures. Sometimes it will act like there is no ssl installed, sometimes it will say the cert is expired (shows the old cert when you view info), and sometimes it pulls the new cert and works. At first I thought it was something in my anti-virus (eset). Disabling it sometimes helped, but not always. Then I tried deleting and re-issuing the certs. That only worked sometimes and strangely the issue date on the cert is showing as yesterday?. Then I tried issuing Let's Encrypt certs.... those seem to work most of the time that the anti-virus is off. I tried to check them with online ssl checkers and they seem to be showing random failures too. But they are hard to test because it looks like they cache the results. Anyone else having weirdness?

• 

  Eminds

  • July 12, 2017 02:06

  check the logs through WHM >> Manage Auto SSL >> logs as that will give you an idea of whats happening when you are renewing the SSLs

  0
• 

  24x7server

  • July 12, 2017 04:38

  Hi, Random failures mostly occurs when you have a load balancer or some other proxy in front of main web server that shapes the traffic from one server to another. However, to go about this issue, I would like you to remove the SSL completely for the account from this server and then reissue is again...

  0
• 

  rinkleton

  • July 12, 2017 13:50

  According to the logs a new cert was successfully installed for one of the affected accounts june 20th. We could see the cert in the store. We don't have any proxies or load balances. This is 2 accounts among over 100 that are working fine on the same server. We did try to uninstall the certs with the results listed above

  0
• 

  cPanelMichael

  • July 12, 2017 15:25

  Sometimes it will act like there is no ssl installed, sometimes it will say the cert is expired (shows the old cert when you view info), and sometimes it pulls the new cert and works.

  
  Hello, Feel free to open a support ticket using the link in my signature so we can take a closer look and see why the certificates are failing. Thanks!

  0

Please sign in to leave a comment.