Replace SSL Certificates that do not match local hostname

bejbi

• July 25, 2017 03:51

On my servers today all wildcard SSL certificates was changed into cPanel certificates, without any warning before. I found it is becouse NEW option in TweakSettings: "Replace SSL certificates that do not match the local hostname" with explain: "When you enable this option, the checkallsslcerts script will replace any SSL certificates that do not match the hostname of the server with a cPanel-signed certificate. This includes wildcard certificates." This option in by default set to ON !!! But there is NO infromation in changelog of RELEASE version 64.0.x (until build 33) I think it should be not like this ... W.

• 

  rpvw

  • July 25, 2017 10:07

  This was documented in the version 64 release notes of 16 June 2017

  0
• 

  cPanelMichael

  • July 25, 2017 16:10

  Hello, You can disable that option if you prefer to keep your wildcard SSL certificate in the future. However, have you considered allowing it to be replaced by a cPanel-signed SSL certificate instead? With AutoSSL and Domain TLS, secure access to services such as cPanel/WHM on a per-domain basis is now easily available: What is Domain TLS - cPanel Knowledge Base - cPanel Documentation Thank you.

  0

Please sign in to leave a comment.