AutoSSL would normally renew this certificate now, but 0 of the website’s secured domains just failed DCV.
Can WHM stop sending me emails about ZERO secured domains that just failed DCV? If none of them failed DCV, then why is it complaining? I'm receiving those emails -twice- (EDIT: TWELVE TIMES) every day because some genius customer defined their subdomains over at the registrar and only made the A record point to our server's IP so all WHM's default subdomains are not pointing to anywhere on the internet, I know, they could remove them from cPanel, but regardless, I don't need to be receiving a ton of emails for an error that doesn't even make any sense to begin with. Receiving enough spam as it is, no need to receive some from cPanel on top of it.
-
The best option would to be exclude the domain as mentioned in the email itself, which can be done from the cPanel >> SSL/TLS Status page of the account in question.
Disabling any global notifications will keep you from receiving important updates as this is technically considered a "failure" on the system.
1 -
Hey hey! Could you post the actual text or a screenshot of the message so I can see that?
0 -
Sure, which one of the 50-ish emails I received over the last few days do you want to see? I'm receiving one almost every 2 hours and it's beginning to p1ss me off. They are all for the same account. I understand mail.thatdomain.com does not exist on the internet, but why is WHM complaining that ZERO of the website's secured domains failed DCV? If ZERO of them failed, then STFU? They host their emails over at Microsoft. I even tried to remove mail.thatdomain.com from the DNS zone entirely, but WHM still sends me those multiple times a day. I also tried to delete the SSL host, then to regenerate the cert using the AutoSSL feature in WHM and it still sends me those:
0 -
Thanks for the additional details. I did find an older case (COBRA-12957) but it seems to have been abandoned when that team went through a transition. I spoke with the team and filed a new case, CPANEL-43923, with some additional details about this behavior, so that will get dealt with now.
0 -
Can one of you guys also fix your code so that it only sends a maximum of 1 (ONE) email per day about an account failing DCV? Sending one every hour or two is extremely annoying and overkill.
0 -
Yes, there is a note in the case not only about the confusing wording but also the quantity of messages.
0 -
BTW, I saw another case number I wanted to read about a few weeks ago but I could not figure out how on this fancy new cPanel forum site. They don't even show up when you Google them. How can I read cases e.g. CPANEL-43923
0 -
It depends on the case number - some have a public guide attached to them and some don't. This one doesn't since there isn't really a workaround besides disabling the notifications completely.
If you have a number you can't find details on in our system here:
https://support.cpanel.net/hc/en-us/sections/360008753193-Support-Topics
just let me know and I'll check the status for you - I'm happy to do that anytime!
0 -
So apart from waiting months/years for cPanel to do something about it, what can I do to make it stop? I don't want turn those notifications off because there might some day be one that I need to receive. But I've received 9 of them since I posted my last message on here yesterday. What can I do to make it STFU? Every single one of them is about mail.thatdomain.com that does not exist on the internet. WE DO NOT CARE. IT'S FINE. How can I make it renew the cert without mail.thatdomain.com so that it stops emailing me every hour or two about it?
0 -
I saw that link but when I click it, it leads to an URL with a different port than WHM. How can I access that location from within WHM?
Also, I understand it's a failure and I don't want to disable it, but how do I fix that "failure" if not by disabling those erroneous, relentless, spammy emails?
0 -
You can't - that has to be done inside cPanel, not WHM.
There also isn't a way to fix the failure at this time as that's on our end.
0 -
Wait, so are you implying that the customer will have to do this inside their cPanel? Also, are you implying that the customer can turn the notifications back on at any given moment?
0 -
You can do it for them, but yes, and yes.
0 -
But what I'm saying is, you see in the email that the cert expires on Saturday, March 23, 2024. Is there a way to invalidate it right now so that AutoSSL generates a new one without the missing domain subdomain that points to nowhere on the internet?
0 -
I hadn't considered that option :D
You could delete the SSL from WHM >> Manage SSL Hosts by deleting that certificate there and then using Manage AutoSSL to re-run it for all users.
0 -
In the 2nd post at the top of this thread: "I also tried to delete the SSL host, then to regenerate the cert using the AutoSSL feature in WHM and it still sends me those".
It doesn't work, it says that WHM will not renew the certificate because 0 domains failed DCV. Anyway, if you read the messages in the thread, all the information is there.
0 -
I missed the part about that not working - sorry about that!
At this point it would be best to submit a ticket to our team to see if there is another workaround for this issue for your particular system.
0 -
Is this issue getting fixed? I am also getting these messages sent twice or three times a day. I even set WHM notices to failures only and I still get deferral notices. Why does it keep sending the same notice over and over. Spamming us.
-----
AutoSSL would normally renew this certificate now, but 0 of the website’s secured domains just failed DCV. To provide you with more time to resolve these problems, AutoSSL will defer the renewal until Jan 7, 2025 at 10:06:00 AM UTC. After that time, AutoSSL will request a replacement certificate that excludes any domains that fail DCV. At the time of this notice, the certificate will expire in 12 days, 11 hours, 1 minute, and 30 seconds.
----
0 -
Nick Kipper, it's been a while since I posted this, but if I recall correctly, I ended up fixing the issue by deleting the whole parent domain and all its subdomains from "Manage SSL Hosts" and then running AutoSSL again so that it regenerates all of them in a single certificate. I hope it helps.
0 -
Thank you Benjamin, yes I was thinking of doing this but wasn't sure it generate more email notifications. Seems to have regenerated certificates fine, so good work around for now. Thanks again.
0 -
No, I don't see how it would generate more emails. Worst case scenario is that it will send you the same amount as before if it doesn't solve the issue.
0 -
I too am having this issue and can't seem to find a fix. Not having any luck with support. It only started a couple of days ago and I recieve emails every couple of hours. Beyond my level of expertise.
AutoSSL would normally renew this certificate now, but 0 of the website’s secured domains just failed DCV. To provide you with more time to resolve these problems, AutoSSL will defer the renewal until May 3, 2025 at 8:46:18 AM UTC. After that time, AutoSSL will request a replacement certificate that excludes any domains that fail DCV. At the time of this notice, the certificate will expire in 12 days, 10 hours, 18 minutes, and 5 seconds.0 -
Alexis Beadman - when you say "not having any luck with support" was the ticket opened through us or through your license provider? Does the AutoSSL errors you're seeing go on to talk about "no local authority?"
0 -
In WHM look up and enter the "Manage SSL Hosts" module and then take a screenshot of everything that contains the domain name that is mentioned in the email notification that you're receiving (for reference/backup purposes). Then, delete every single entry that contains it. Then, add the domain name over again and run autoSSL (or wait 15 minutes and it will run automatically). This is what I had done last year and the issue stopped.
The reason why WHM sends you notifications non stop is because the domain name has an A record set in the authoritative DNS (probably the domain registrar) that points to another server (OR it doesn't have an A record for that subdomain but it used to) while one of the subdomains of this domain is set in your WHM server as a non-authoritative DNS. So your WHM server mistakenly thinks that this subdomain has newly become invalid on the Internet because the authoritative DNS does not match what you set up in your WHM DNS zones, but sometimes, it happens that you do not care about a subdomain, because it's a test domain that is sometimes valid and sometimes point to nowhere and so I would understand why you would just want the email notification to stop, but unfortunately, you will have to delete the domain and add it again for the certificate to STOP including this now invalid subdomain (that is set to another IP and/or whose A entry in the DNS at the registrar level is now unset)
0
Please sign in to leave a comment.
Comments
24 comments