Notification: The AutoSSL certificate renewal may cause a reduction of coverage


I received this notification from my control panel for

What do I need to do to make sure there is no reduction in coverage? The AutoSSL certificate renewal may cause a reduction of coverage starting 2018-06-08 at 02:55:31 UTC
The “LetsEncrypt” AutoSSL provider could not renew the SSL certificate without a reduction of coverage because of the following problems:

:no_entry: [ Last AutoSSL Run at “2018-03-26 at 04:09:21 UTC” ]” does not resolve to any IPv4 addresses on the internet.
For the most current status, navigate to the “SSL/TLS Status” interface. You can also exclude domains from future renewal attempts, which would cease future notifications.

You can fix these problems within 3 days of the certificate expiry date (2018-06-11 at 02:55:31 UTC) or take other actions. If you do not, this certificate will automatically renew without these domains.

The next time that the “LetsEncrypt” AutoSSL provider attempts to renew the SSL certificate, the system will attempt to add the following domains to that certificate:
The certificate that is installed on this website contains the following properties:
Expiration: 2018-06-11 at 02:55:31 UTC
Domain Names:
countryName US
organizationName Let’s Encrypt
commonName Let’s Encrypt Authority X3
To upgrade to an EV or OV certificate, navigate to the “SSL/TLS Wizard” interface.



First, we can do nothing since it’s a autossl certificate.

Second, that error message means that the domain “” doesn’t have a proper IPV4 address.
You can either add the address or do nothing (so the certificate renewed will not include that host)

Thank you


Maybe the hosting provider or domain registrar changed the DNS settings between the time that the certificate was first obtained and now? But it looks like the DNS record in question is now back, so hopefully that’s enough for the certificate to renew.

If not, a next step might be to ask whoever is responsible for the DNS about whether anything has changed recently to cause the base domain to stop working.


Looks OK here, but default access is still plain http anyway…


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.