Home Security SSL Certificates Intermediary Root CA Certificate Expiration cPanel/WHM - Sectigo

Intermediary Root CA Certificate Expiration cPanel/WHM – Sectigo

On May 30, 2020 an intermediary CA certificate used by Sectigo expired causing some older versions of OpenSSL unable to validate the certificate chain. This event reduced compatibility with a wide range of software and services. Some of the impacted software is listed below. New installations and updates for cPanel & WHM, EasyApache, and several other services were impacted. We have since installed an updated intermediate certificate provided by Sectigo to restore functionality.

Sectigo SSL certificates installed before May 1, 2020, will need to be reinstalled to ensure compatibility with the software listed below. If you are running a supported version of cPanel & WHM (version 86 and later), and have updates enabled, we have issued a fix to install the new intermediate certificate during the next update that does not require updating OpenSSL. The intermediate certificate update is seamless to end-users.

If you have disabled automatic updates and you are running a supported version of cPanel & WHM (version 86 and later), running the following commands in a root shell will update the affected Sectigo intermediate certificates:

/scripts/autorepair update_sectigo_cabundles
/usr/local/cpanel/bin/checkallsslcerts --force

These commands will not work on unsupported versions of cPanel & WHM. Servers running anything older than version 86 should update as soon as possible.

You can find out more information from the vendor about the root CA certificate expiration here: https://support.sectigo.com/articles/Knowledge/Sectigo-AddTrust-External-CA-Root-Expiring-May-30-2020

Affected Client Software:

  • Legacy clients that have not received an SSL/TLS update since mid-2015
  • Client software using OpenSSL older than 1.1.0, such as wget and curl

Should you have any questions about SSL errors that you’re experiencing, please contact our support team.

Buy today your SSL Certificate at MozDomains

Momed Jussubhttps://www.mozdomains.com
Network Engineer (Cisco, Mikrotik, Juniper, Huawei, Ubiquiti, Fortigate, pfSense, Palo Alto), CCTV Engineer, IPTV Engineer, Virtualization Specialist OpenVZ, XEN, KVM and HyperV, Optical Fiber Network Specialist, System Administrator Windows /Linux, PenTester, Full Stack Developer (HTML, CSS3, PHP, C # Desktop App, C # ASP.NET, MySQL, MSSQL) and Writer.
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments

Must Read

Intermediary Root CA Certificate Expiration cPanel/WHM – Sectigo

On May 30, 2020 an intermediary CA certificate used by Sectigo expired causing some older versions of OpenSSL unable to validate the...

Five Reasons Why Small Businesses are Prone to Malware Attacks

Often times, most people think that small startups experience less security threats than their big counterparts. Although there’s some truth to it, it’s not...

DDoS Attack On WordPress Search

WordPress is one of the most popular platforms that allows users to create and manage their own websites. Through WordPress aspiring writers, bloggers, and...

How to Detect and Remove Malware from Website?

Hackers inject malware into websites to take advantage of the site’s traffic as a way to distribute potentially unwanted applications into many visitor’s computers...
0
Would love your thoughts, please comment.x
()
x