prajithp / letsencrypt-cpanel Goto Github PK

As i check and investigate, for non www working. with www not working. This is happen when you have alot of domain in 1 cpanel. Example

Primary domain - abc.com

BUT you install def.com for ssl, so the Lets Encrypted registered your def.com as def.abc.com

so www.def.com cannot be access. You only can access your SSL on www.def.abc.com

Im not sure this plugin working on subdomain or not

Just ran into this, after installing the plugin, when I visit its plugin page I see this:

Internal Server Error

500

No response from subprocess (/usr/local/cpanel/whostmgr/docroot/cgi/letsencrypt/letsencrypt.pl): The subprocess reported error number 2 when it ended.

Any idea whats happening? The install script didnt have any errors and python 2.7 is installed correctly.

Hi:

When i run renew_letsencrypt_ssk.pl as root, it dies with message:

Failed to renew SSL certificate for hostname : Died at /usr/local/cpanel/Cpanel/LetsEncrypt/Service.pm line 147

who can this problem be resolv ?

thanks in advance

Hi,

Is there any chance we could have a 32x32 icon done for the x3 and retro themed skins? Or for rvskin and third party skins as well... For some reason the 48x48 icon doesn't show up in the security section (and looks out of place if its there) when using the depreciated theme or the retro style.

Thanks. Your plugin is really nice btw.

Hal

Hello Maby you can Add are way that costumers can add ssl to ther owner domain so that the admins not need to do it or a post wwwaccountcreate so that all acount get ssl automaticly??

that would be great why atm us tech need to do it for all user

besth wish

kai

The readme is a little bare right now, so I felt the need to ask. What's the situation with renewals? Do we need to go in and renew them ourselves manually, or does this happen automatically on cron?

Thank you!

Hello, it worked fine on my hosted domains! But I was wondering if there is anyway to install these certificates on WHM service (2083, 2087, webmail,cpanel, etc)?

Thank you!

I'm getting this error , after trying to install certificate:
Not an ARRAY reference at /usr/local/cpanel/base/3rdparty/letsencrypt-cpanel-ui/lib/perl5/Protocol/ACME.pm line 718.

I'm getting the following error when trying to generate a cert for a domain on a CentOS 7.2 server. The error appears when trying in both WHM and cPanel.

malformed JSON string, neither tag, array, object, number, string or atom, at character offset 0 (before "SSL connection faile...") at /usr/local/cpanel/base/3rdparty/letsencrypt-cpanel-ui/lib/perl5/Protocol/ACME.pm line 1028.

Installed over SSH as root account seemed to go through successfully, just this bit I'm having issues with.

I am getting this error when trying to add a cert. Anyone know what is causing this? It seems to be a new error after upgrading to WHM 56.0 build 5

Hello!
This tool is great! Thank you so much for building this!

I'm having some trouble making it work from cpanel. I'm able to install certificates from WHM with no difficulty, but when I try to install from cpanel I get the following:

Something went wrong, kindly check the letsencrypt log file

But there is no log file in /var/letsencrypt

Any insight on how I can investigate this issue?

It's perhaps noteworthy that the site I'm attempting to install a cert for does NOT have a dedicated IP. Again, despite this, everything works fine from WHM but not from cPanel.

Thanks for any help you can provide!

Hi,
I have in crontab:
00 00 * * * /scripts/renew_letsencrypt_ssl.pl > /dev/null 2>&1

But it is not working, in WHM I have domains with expired Let's Encrypt certificates.
Where is the problem? How can I renew it?

Hi to all thanks very much for the plugin and work ..

I have this problem let me every day certifies the SMTP mail certificate dovecot etc .. on this cron I found this:

00 00 * * * /scripts/renew_letsencrypt_ssl.pl> / dev / null 2> & 1

to not have every day the renewal ??

Just noticed this at the bottom of all the root crons I checked.
Also note extra space between * and /

00 00 * * * /scripts/renew_letsencrypt_ssl.pl > /dev/null 2>&1
00 00 * * * /scripts/renew_letsencrypt_ssl.pl > /dev/null 2>&1

Hello,
your script works excellent, thank you very much!

But can you sort the table and the select form alphabetically?
And how can I run the renew script from CRON?

Thank you!

The instructions on how to upgrade in README don't work. Following them for the last upgrade results in errors like those in #10. (@inc path errors for Protocol::ACME and cpanel reporting "No response from subprocess" etc.) The plugin doesn't use the system's Protocol::ACME, I guess.

Uninstalling and installing again per the README worked fine.

Again, this is a great plugin. Thanks so much.

I noticed the folder .well-known/acme-challenge

After doing more research on it, this is what I found.

certbot/certbot#2049
certbot/certbot#1003

On the second link

kuba commented on Oct 16, 2015
cleanup() should delete .well-known/acme-challenge when all previously perfomed challenges have been cleaned up. This requires us to track the status of all incoming challenges, just like standalone2 does.

Good Afternoon,
Upon installing this plugin, I see the option under the WHM plugin manager for "Letsencrypt" however I get a 500 server error after selecting it. Any advice?

Internal Server Error

500

No response from subprocess (/usr/local/cpanel/whostmgr/docroot/cgi/letsencrypt/letsencrypt.pl): The subprocess reported error number 255 when it ended.

Whether I try to install on one of the items listed or several, the plugin reports this error:

Not an ARRAY reference at /usr/local/cpanel/base/3rdparty/letsencrypt-cpanel-ui/lib/perl5/Protocol/ACME.pm line 713.

BTW, I love your plugin. Thanks very much!

Sometimes with a subdomain I have this error:

Error occured: Status: 403, Detail: Error creating new cert :: Authorizations for these names not found or expired: xxx.yyy.com, Type: urn:acme:error:unauthorized

I found the following solution:

For example, the domain name is abc.com

My subdomain is 123.abc.com

I put in the DNS, www.123.abec.com

And it works.

First, thank you for this wonderful plugin. I came from the beta command line interface from letsencrypt, and while that worked for me on my own home server, setting up the same on a centOS RHEL box with heavy integration with cPanel/WHM was not an ideal solution.

Finding this cpanel plugin was a life saver - thank you!

There are a few last pieces I'm attempting to rectify, one of which is enabling ssl for mail handled by our server. How would I go about adding mail.domain.com to the certificate?

Thank you!

The Services certificate is forcefully issued even though a certificate is already used, in our case our certificate is getting replaced by the lets encrypt certificate every time. Since we didnt want to change it back everytime we decided to let it use the lets encrypt certificate. But now on each cron run it issues a new certificate for the services.

I just noticed when installing a certificate for a domain, that the newly installed cert does not show up under
SSL enabled Vhosts

until you leave and renter
Manage letsencrypt ssl certificate

I have installed the plugin. but for some reason the same happened on two of our servers.
the SSL install takes for ever. and SSL is not installed.both have WHM build 8.

I've an issue where a user added a new subdomain after the initial run of lets encrypt and the plugin doesn't seem to support scanning the users domains. Also, I'm not able to remove Certs via the plugin, only create new.

I set up a subomain via cPanel and installed letsencrypt via cPanel.
(no issues)

I uninstalled the subomain.

I then used the same name and created an account via WHM.
cPanel could not install the cert but WHM could.

Hi,

When I try to add a cert to a subdomain I get the following error.

Error occured: Status: 403, Detail: Error creating new cert :: Authorizations for these names not found or expired: imap.pdrnet.biz, www.imap.pdrnet.biz, Type: urn:acme:error:unauthorized

I had no prblem adding to example.com and www.example.com. Any suggestions?

Thanks for a great plugin.

I did not find any option to delete a certificate.

Is it that you can put this option?

This is output from CRON job /scripts/renew_letsencrypt_ssl.pl:

CDB_File could not be loaded. You may see pages in English rather than in your desired locale at /usr/local/cpanel/Cpanel/Locale/Utils.pm line 11.

I'm currently having an issue with installing certs that is an addon-domain. Since i only seem to get to choose the subdomain from the drop-drown in Plugins -> letsencrypt

Hi Prajith,
]
Hope you are doing great! I tried using this plugin at my end but found that the domain name does not automatically redirect to https protocol. While if I type https://example.com then it works but if I type http://example.com it stays to non secure url without https. I tried adding manual redirection from cpanel and .htaccess but that didn't worked either, the webpage stops working showing too many redirections for the page.
Can you please provide me possible solution on this?

Thanks,
Saurabh

Just playing and I noticed.

While it lists the provider of an expired Cert as
COMODO CA Limited

Clicking Renew letsencrypt SSL certificate
Offers to renew the domain of the expired Comodo cetificate.

I am assuming this is a bug?

Good morning. This is non-urgent. Just curiosity.

The "Renew letsencrypt SSL Cert"...what's it for? Certs renew automatically, so I'm just curious what it's for. What its function is. Thanks!!

Hi folks,

The LetsEncrypt logo isn't appearing in cPanel/WHM.

It tries to load:

https://srv1.testserver.com:2083/cpsess151211/3rdparty/letsencrypt-cpanel-ui/img/icon.png

Any idea?

Template: paper_lantern
WHM 54.0 (build 22)

When i try to set up an SSL cert for a subdomain, sub.mydomain.com (for example), it says to me "Update the domain owner email id in whm first".
So i went into WHM to the account list and set the user email (the user who was the owner of the domain and the subdomain), but even after setting it, it still gives me the same error. There are no redirects active on the website.
After a few tries i managed to create a certificate for the main domain (at first it gave me "Authorizations for these names not found or expired: sub.mydomain.com, Type: urn:acme:error:unauthorized"), but it still not work with the subdomain

Hello,

After using the addon, I have discovered an issue:

There is no way to select which domains attached to a cpanel account to generate a certificate for.

I have a cpanel account that is used not only to host a site, but to manage DNS for a few other domains, as creating a DNS zone in cpanel requires an existing account to attach the zone to for management purposes. For an account like this, where the dns may be setup to host on a different server, will result in errors and an inability to generate a certificate for the desired domain.

Would it be possible to, before beginning the generation process, have the addon detect what domains are available to generate a cert for, and instead of selecting all, provide a dialogue to the user to allow them to select which domain(s) to generate the certificate for?

Can you add this fiture ?

It would be awesome if there was a "get ssl certs for all accounts" button or function.

I just updated and there is an issue

CONFLICT (content): Merge conflict in README.md
Automatic merge failed; fix conflicts and then commit the result.

SSL Certificate Removed from the plugin.
SSL Cert and Key deleted from cPanel.
Install SSL again.
Error: The domain xxx.com is already having an active ssl certificate.

Hello We get That error

Updating letsencrypt and virtual environment dependencies......Requesting root privileges to run with virtualenv: /root/.local/share/letsencrypt/bin/letsencrypt certonly --config /tmp/GAMD0Q3FJ3.conf --renew-by-defaultVersion: 1.1-20080819Version: 1.1-20080819Failed authorization procedure. bewo.dwe-gruppe.eu (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Could not connect to http://bewo.dwe-gruppe.eu/.well-known/acme-challenge/IDIx4VlfaTLoT6_TGpsRBYQSMfB9ijr_d286dbYfhg8, www.bewo.dwe-gruppe.eu (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Could not connect to http://www.bewo.dwe-gruppe.eu/.well-known/acme-challenge/kjSXLcHp-ZUqJwK5d0EsY2NILNjm3TFLfXHtrWBGHEsIMPORTANT NOTES: - The following errors were reported by the server: Domain: bewo.dwe-gruppe.eu Type: urn:acme:error:connection Detail: Could not connect to http://bewo.dwe-gruppe.eu/.well-known /acme-challenge/IDIx4VlfaTLoT6_TGpsRBYQSMfB9ijr_d286dbYfhg8 Domain: www.bewo.dwe-gruppe.eu Type: urn:acme:error:connection Detail: Could not connect to http://www.bewo.dwe-gruppe.eu/.well- known/acme-challenge/kjSXLcHp-ZUqJwK5d0EsY2NILNjm3TFLfXHtrWBGHEs

And yes we are login to whm as root and what we see are that he not set the acme-challenge files

kai

I tried to install a cert for WHM, and the cert that ends up being installed has the 'Happy hacker fake CA'?

I apologize for asking an extremely basic question, but I need to write up a plan for potentially implementing this plugin on our servers and want to be sure to include everything.

Does the plugin installer also install the LetsEncrypt application, or is that required to be installed separately?

Thanks!

It would be nice if there was a button to upgrade the plugin from within the WHM interface, for simplicity purposes.

Getting this error when attempting to install SSL on a domain for the first time.

malformed JSON string, neither tag, array, object, number, string or atom, at character offset 0 (before "Net::SSLeay 1.49 mus...") at /usr/local/share/perl5/Protocol/ACME.pm line 1028.

Hi,
From the first time i tried to create an SSL certificate, i continue to get this error

Error occurred: Status: 403, Detail: Error creating new cert :: Authorizations for these names not found or expired: sub.domain.com, www.sub.domain.com, Type: urn:acme:error:unauthorized

I managed to install a cert on a domain (let's say www.domain.com), but when i try to install the certificate on a different domain on the same machine, or a subdomain, i get the aforementioned error. I've already seen this issue and this one too, but none of these worked. I never installed any self-signed certificate, I've disabled the https redirecting within the .htaccess and added the www.sub.domain.com dns entry, but it still give me the same error again and again. I looked a bit within the code, but didn't found any useful information. I can say, however, that the challanges were successfully created within the /home/domain/public_html/sub/.well-known/acme-challange/ folder. The first certificate that I installed gave the same error multiple time, than it gave me a "malformed json" error and the following time it worked. I can't really say why.

EDIT:
If I try to open sub.domain.com/.well-known from the browser, it gives me a 403 error (Forbidden). Is this the expected behaviour? Maybe it's because of this...

I'm sorry to bother this much, thank you for your help!

While trying to solve this problem, I tried for the first time to enter the cpanel plugin interface (up until now I was doing everything on the WHM page), but it downloaded the index.live.pl file rather than open it.
I thought it was useful to say it, probably it was just an oversight...
My Cpanel doesn't have a valid SSL cert, or at least it has a self-signed, since it's always giving me the barred lock and the "unsecure" page. I don't know if this is related, but maybe it could be useful :)

In my panel it auto install certificate for cpanel and whm, but i have free cpanel ssl certificate for server. How can it be disabled ?