Site icon Learning & Doing

The following cPanel service generated warnings from the checkallsslcerts script

Problem nya :

The system failed to acquire a signed certificate from the cPanel Store because of the following error: Neither HTTP nor DNS DCV preflight checks succeeded!

dan jika di coba script nya :

[/home/yuby]# /usr/local/cpanel/bin/checkallsslcerts
The system will check for the certificate for the “cpanel” service.
The system will attempt to verify that the certificate for the “cpanel” service is still valid using OCSP (Online Certificate Status Protocol).
The “cpanel” service’s current certificate comes with the server’s cPanel license. This certificate expires in less than 25 days. The system will attempt to renew and install a new certificate to the “cpanel” service and any other services that use the old certificate.
The system will attempt to install a certificate for the “cpanel” service from the system ssl storage.
None of the certificates in the system ssl storage were acceptable to use for the “cpanel” service.
The system will attempt to install a certificate for the “cpanel” service from the cPanel store.
Received error “X::NoCertificate” from cPanel Store; requesting new certificate …
Setting up HTTP DCV (/var/www/html/.well-known/pki-validation/64D6BE402FA887E73C198C99C7CE0D2C.txt) …
… complete.
Setting up DNS DCV (CNAME _64d6be402fa887e73c198c99c7ce0d2c.mix-16.varnion.net.id) …
… complete.
Attempting DNS DCV preflight check …
FAILED: The DNS DCV check (_64d6be402fa887e73c198c99c7ce0d2c.mix-16.varnion.net.id IN CNAME) did not return the expected value (c87f71749304c3e7b5a52dc774b2d2e0.04f5b2a01807b7e30dd25bd47775a0d5.comodoca.com).
Attempting HTTP DCV preflight check …
FAILED: Cpanel::Exception/(XID cxe6ak) The system queried for a temporary file at “http://mix-16.varnion.net.id/.well-known/pki-validation/64D6BE402FA887E73C198C99C7CE0D2C.txt”, but the web server responded with the following error: 404 (Not Found). A DNS (Domain Name System) or web server misconfiguration may exist.
at /usr/local/cpanel/Cpanel/SSL/DCV.pm line 386.
Cpanel::SSL::DCV::ANON(Cpanel::Exception::HTTP::Server=HASH(0x4404070)) called at /usr/local/cpanel/3rdparty/perl/528/lib/perl5/cpanel_lib/Try/Tiny.pm line 118
Try::Tiny::try(CODE(0x43b0440), Try::Tiny::Catch=REF(0x3ba7d20)) called at /usr/local/cpanel/Cpanel/SSL/DCV.pm line 446
Cpanel::SSL::DCV::_verify_http(“http://mix-16.varnion.net.id/.well-known/pki-validation/64D6B”…, “c87f71749304c3e7b5a52dc774b2d2e004f5b2a01807b7e30dd25bd47775a”…, “COMODO DCV”) called at /usr/local/cpanel/Cpanel/SSL/DCV.pm line 284
Cpanel::SSL::DCV::verify_http(“http://mix-16.varnion.net.id/.well-known/pki-validation/64D6B”…, “c87f71749304c3e7b5a52dc774b2d2e004f5b2a01807b7e30dd25bd47775a”…, “COMODO DCV”) called at /usr/local/cpanel/Cpanel/Market/Provider/cPStore/Utils.pm line 88
Cpanel::Market::Provider::cPStore::Utils::imitate_http_dcv_check_locally(“mix-16.varnion.net.id”, “.well-known/pki-validation/64D6BE402FA887E73C198C99C7CE0D2C.txt”, “c87f71749304c3e7b5a52dc774b2d2e004f5b2a01807b7e30dd25bd47775a”…) called at /usr/local/cpanel/Cpanel/cPStore/HostnameCert/DCV.pm line 193
eval {…} called at /usr/local/cpanel/Cpanel/cPStore/HostnameCert/DCV.pm line 189
Cpanel::cPStore::HostnameCert::DCV::set_up(“—–BEGIN CERTIFICATE REQUEST—–\x{a}MIICmDCCAYACAQAwIDEeMBwGA”…) called at /usr/local/cpanel/Cpanel/cPStore/HostnameCert.pm line 159
Cpanel::cPStore::HostnameCert::_request_new_certificate(Cpanel::cPStore::HostnameCert=HASH(0x3753f70)) called at /usr/local/cpanel/Cpanel/cPStore/HostnameCert.pm line 129
Cpanel::cPStore::HostnameCert::get_hostname_cert_from_store(Cpanel::cPStore::HostnameCert=HASH(0x3753f70)) called at bin/checkallsslcerts.pl line 528
bin::checkallsslcerts::_get_certificate_pem_from_store(bin::checkallsslcerts=HASH(0x2cb18d8)) called at bin/checkallsslcerts.pl line 450
bin::checkallsslcerts::ANON() called at /usr/local/cpanel/3rdparty/perl/528/lib/perl5/cpanel_lib/Try/Tiny.pm line 97
eval {…} called at /usr/local/cpanel/3rdparty/perl/528/lib/perl5/cpanel_lib/Try/Tiny.pm line 88
Try::Tiny::try(CODE(0x33c6058), Try::Tiny::Catch=REF(0x2d1c028)) called at bin/checkallsslcerts.pl line 454
bin::checkallsslcerts::_replace_cert_with_ca_signed_cert_from_cpstore(bin::checkallsslcerts=HASH(0x2cb18d8), “cpanel”) called at bin/checkallsslcerts.pl line 310
bin::checkallsslcerts::_check_notify_and_auto_renew_cert_for_service(bin::checkallsslcerts=HASH(0x2cb18d8), “cpanel”) called at bin/checkallsslcerts.pl line 86
bin::checkallsslcerts::run(bin::checkallsslcerts=HASH(0x2cb18d8)) called at bin/checkallsslcerts.pl line 50
Undoing HTTP DCV setup
… complete.
Undoing DNS DCV setup …
… complete.
[WARN] The system failed to acquire a signed certificate from the cPanel Store because of the following error: Neither HTTP nor DNS DCV preflight checks succeeded!

Solusi :

— cek nano /etc/apache2/conf/httpd.conf

pastikan virtualhost nya benar misal yg salah

<VirtualHost 103.23.201.70:80>     
ServerName mix-16.games.net.id

di rubah jadi sesuai

<VirtualHost 103.23.201.170:80>     
ServerName mix-16.games.net.id

— atau bisa di rubah dari WHM >> Basic WebHost Manager® Setup

Modifying Shared Virtual Host IPv4 Address from 103.23.201.70 to 175.176.161.170.
— Lalu rebuild apache

# /scripts/rebuildhttpdconf

— setelah itu coba jalankan script nya lagi :

/usr/local/cpanel/bin/checkallsslcerts –allow-retry –verbose

Exit mobile version