Securing the Internet with AutoSSL

Update: If you’re looking for information about integrating Let’s Encrypt via AutoSSL see this blog post: Let’s Encrypt with cPanel & WHM and AutoSSL

————-

Three and a half years ago (in a galaxy far, far away) cPanel began planning a feature that we hoped would make the entire internet safer and more secure. There have been a lot of changes, both in the industry and in the company, since then. It took significant re-writes of a lot of the systems inside cPanel & WHM and the cPanel store, but it’s finally here. In cPanel & WHM version 58 we welcome AutoSSL, and it is a fantastic addition to our list of features.

What is AutoSSL?

AutoSSL is the solution to one of the biggest pain points that exists for every cPanel & WHM user: SSL installation and renewal. With AutoSSL that pain goes away. There are no more forms to fill out, and no more certificates to manually copy into place. Once you enable AutoSSL, your websites are automatically secured with a freeDomain Validated SSL certificate. Perhaps more exciting is the fact that your coverage will never lapse, because at expiration time a new, free SSL is requested and automatically installed.

How do you enable AutoSSL?

Enabling is easy! In WHM navigate to the AutoSSL interface, and adjust the selected toggle to cPanel. Then click save.

Enabling AutoSSL

The server will automatically do the following:

  • Add a feature to WHM >> Packages >> Feature Manager named “AutoSSL”
  • Add a cronjob ( /etc/cron.d/cpanel_autossl ) to handle the downloading and installation of new SSL certificates for all of your hosted domains.

There are some limitations when dealing with very large numbers of domains that is outside cPanel’s control, which you can read about in our documentation.

Troubleshooting AutoSSL

If you have any problem with the application, you can view the logs for AutoSSL right from the WHM interface. After the first run of the cronjob you’ll see the logs listed in the ‘Logs’ tab. You can load the log by selecting the log file you’d like to view and clicking ‘View Log’.

Troubleshooting AutoSSL

What’s next for AutoSSL?

It looks like cPanel & WHM version 58 will make it to RELEASE next week, which means this feature will start popping up for more and more of our customers. One of the most highly requested additions to AutoSSL is support for Let’s Encrypt.

We’re also working on adding SNI support to cPanel, WHM, and Webmail. When that’s complete, the free SSLs will allow all cPanel, WHM, and webmail logins to use the domain SSLs, and resolve this feature request. That might not make it until cPanel & WHM version 62, but it’s definitely coming!

Upgrade now to take advantage of AutoSSL

AutoSSL was introduced as a new feature in v58, but if you’re still running CentOS 5 or CentOS 6 32-bit, you won’t be able to take advantage. cPanel & WHM v56 is the last to support CentOS 5. If you want the benefits of AutoSSL, it’s time to migrate! Our Server Configuration additions to the Transfer Tool make it easier than ever, so what’s holding you back? Your feedback is crucial to me! As always, email me or find me on twitter. I want to hear from you!