Renewal of expired cert on TSO hosted site

First of all, I am not an expert in any of this! My actual question is at the end. I have a small website hosted by TSOhosting. They use to use Lets Encrypt but now seem not to. I had a valid Lets Encrypt cert but it expired on 17 July 2022. My site now comes up in browsers as unsecure etc. I have the key and other data from the old cert.
Q: can I reactivate/revalidate the SSL on quivis.uk ? Thanks

2 Likes

If you know your cPanel username and password, you can login at http://quivis.uk:2083 and navigate to "Lets Encrypt SSL" or "AutoSSL" and check what's going on there. Maybe there will be a way to try renew the certificate.

4 Likes

Welcome to the Let's Encrypt Community, Duncan! :slightly_smiling_face:

Since TSOhosting was bought by GoDaddy, your best solution is likely to use my CertSage ACME client.

4 Likes

Thanks Griffin. I didn't know TSO had been bought by Godaddy. No wonder they've gone to the dogs! Anyway, thanks for the advice and I'll give your CertSage ACME client suggestion a whirl. I'll report back on progress. If I can do it, anyone can. Thanks again. Duncan

3 Likes

Thanks _az I've had a suggested solution from griffin which I'll have a go at implementing. Duncan

3 Likes

Hello again Johnathan Griffin - I fell at the first hurdle! Uploaded certsage.php to root as advised but when I tried to visit to acquire the cert I get a 404. The website still tries to load as https with warnings that it's not secure etc and even trying to browse under the 'advanced' setting will not allow me to access the certsage file. I suspect I might have to remove the current https status and revert to http but unsure how to do that. Many thanks for any help. Duncan

2 Likes

P.s. Just looked in cPanel and there is no CertSage folder. The only relevant-looking one 'ssl' contains folders called 'certs', 'csrs', and 'keys' none of which have CertSage but 2 contain other files. In the ssl folder there are also 2 files: ssl db and ssl db cache

1 Like

You need to put certsage.php in your webroot folder (/public_html), not your root folder (/). You likely can just skip past the https invalid warnings. Let's Encrypt will ignore the invalid certificate anyhow. The CertSage folder is created by certsage.php when you successfully run it (i.e. successfully visit it in your browser). The /ssl folder is where cPanel keeps your certs and keys once you successfully install them into cPanel.

5 Likes

Hello Jonathan - thanks for the further help and advice. I put certsage.php as directed and had partial success. I own 2 domains; quivis.uk and quivis.co.uk. For some reason unexplained by TSO [I've asked...] another domain is listed in my account called gh-547914.dummy TSO seem to have created this and seem to have used it as the basis of my website.

I retrieved 'staging' and 'production' certificates for quivis.uk but not for www.quivis.uk or quivis.co.uk or www.quivis.co.uk [Got a 'failed' message.] I retrieved the .crt file for quivis.uk as directed and pasted it into the domain's cert box but when it came to the key I gave up. There already existed 3 files in each of the cPanel 'certs' and 'keys' folders. Unsure whether they were leftover from previous or current and whether to delete etc I gave the whole thing up as too tiresome! No staying power - but I don't enjoy any of this, take no pleasure in the procedure itself and derive no satisfaction from achieving the desired result on the rare occasion that happens. None of which of course is your problem/fault.

So I think the way ahead for me is to find another host that includes SSL as standard and bid TSO adieu. I was surprised that I had no warning from them that my SSL was about to or had just expired. I remain surprised that they provide a platform deemed insecure by those who determine these things and no simple means of making it secure other than paying them to do what, in my eyes, they should do from the outset. I have other complaints about their service but will not bore you with them! I shall be looking for a new host shortly in any case as my account with them expires in about 5 months.

So thanks again and I have one final question; should I remove the certsage.php from my webroot folder?

Best wishes, Duncan

3 Likes

Totally understandable. :blush:

Yes, you should remove certsage.php and the CertSage folder along with all of its contents.

5 Likes

Many thanks and will do. All the best, Duncan

2 Likes