How renew cert ssl , I have got email to expire ssl domain

GyHR · March 15, 2018, 10:48pm

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: www.getyourheadright.com.au; mail.getyourheadright.com.au, getyourheadright.com.au

Our notice from cPanel said domain expired 15, Jan 2018 , I have no idea how to renew these domain to cert
ssl, please help me.
I want to ask if way to auto renew ssl because 3months goes quickly & may forget to renew manually. Thank you for your time & guidance.

Cheers

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

schoen · March 15, 2018, 10:53pm

Hi @GyHR,

Your certificate did expire on January 15. If you got it using cPanel, it should be possible to renew it using cPanel as well (and to set it to renew automatically). If you can’t find this configuration option in your cPanel interface or if it fails to renew your certificate when you ask it to, you should contact your hosting provider’s support.

If your hosting provider discovers that cPanel is encountering an error with the renewal and the provider doesn’t understand how to fix it, we’re happen to investigate and try to help if given further technical details.

stevenzhu · March 15, 2018, 10:53pm

Hi,

You might be using cPanel’s autossl feature.

A quick question, do you obtain the certificate by yourself or it’s installed (included in your hosting package)?

Thank you

GyHR · March 15, 2018, 10:54pm

Its most likely installed by our webdesigner. (hosting package)

stevenzhu · March 15, 2018, 11:04pm

Hi,

It seems you are using fluccs’s server for hosting.
In this way, since fluccs’s doesn’t enable autossl.

You can : use web utilities like zerossl.com or sslforfree.com to obtain a free one. Or purchase any commercial ssl certificates from web.

Be minded that letsencrypt certs are only valid for 90 days so you need to renew that manually. (Commercial ssl are valid at least one year. So you’ll have more time)

Thank you

GyHR · March 15, 2018, 11:16pm

Thanks StevenZhu,

So basically FLUCCS stops us using lets encrypt (Autorenewal every 90days).

Other alternatives is Zerossl or sslforfree (valid over 90 days) how long are they valid for?

prob due to FLUCCS selling SSL certs. (conflict of interest?)

Thanks for your input.

schoen · March 15, 2018, 11:19pm

@GyHR, AutoSSL in cPanel, ZeroSSL, and sslforfree are all different ways of getting the same 90-day Let’s Encrypt certificate. The advantage of AutoSSL is that you won’t have to do anything because it’s more automated.

Some shared hosting providers do seem to have disabled this functionality for their own financial reasons, especially when they have their own reseller relationships with paid CAs. You should be able to confirm the situation with the host’s support.

stevenzhu · March 15, 2018, 11:21pm

Hi,

Your website developer deployed a letsencrypt ssl on your website. And because FLUCCS doesn't provide free ssl with cPanel, so you can't get a free ssl from them. In this case, you can get the letsencrypt ssl from zerossl.com or sslforfree.com (which same validity).

_az · March 15, 2018, 11:25pm

@GyHR can you search on your cPanel home page for “Lets Encrypt” or similar? I believe Fluccs may be using a solution other than AutoSSL.

GyHR · March 16, 2018, 2:32am

I have selected the “let’s Encrypt” on cPanel home page.

Doesnt show whether FLUCCS use AutoSSL or the other two (zeroSSL/sslforfree)

Thanks az

schoen · March 16, 2018, 2:33am

Of these three, only AutoSSL is a cPanel feature. The other two are web sites.

_az · March 16, 2018, 2:35am

That UI is from the FleetSSL cPanel plugin (a third party plugin I authored before AutoSSL was a thing).

@GyHR it looks like you have a valid certificate now - and it should automatically renew in perpetuity from now on.

schoen · March 16, 2018, 2:36am

This interface shows that your certificate was successfully renewed (probably from within cPanel, either automatically or because of something you clicked on). There’s a new certificate, and it’s being used—your site is no longer showing an error about an expired certificate.

It does have a mixed-content problem (due to loading images over HTTP rather than HTTPS, like http://getyourhead.wpengine.com/wp-content/uploads/2015/07/GET-YOUR-HEAD-RIGHT-LOGO.jpg instead of https://getyourhead.wpengine.com/wp-content/uploads/2015/07/GET-YOUR-HEAD-RIGHT-LOGO.jpg)—which is apparently an out-of-date link anyway.

You can investigate the mixed-content problem with https://www.whynopadlock.com/.

GyHR · March 16, 2018, 2:48am

Thanks everyone,

really appreciate the prompt response, also very clear.

Good to know theres lots caring pros out there, for us jurassic who can’t tell diff btn http & https

hahaha! Also thanks for the confirmation on auto-renewal past 90 days validation.

Enjoy your upcoming Easter long weekend!

cheers

system · April 15, 2018, 2:48am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.