How to Disable AutoSSL for a Particular Domain of the cPanel Account
Posted on January 26th, 2018
How to Disable AutoSSL for a Particular Domain of the cPanel Account
As we all know how to enable AutoSSL for a cPanel account. Please refer this link https://www.interserver.net/tips/kb/enable-manage-autossl-whmcpanel/ if you don’t know how to manage AutoSSL in WHM. By default, we can only see Comodo AutoSSL provider in WHM. We can install the Let’s Encrypt AutoSSL provider by using below scripts.
Login to the server via SSH as a root user and run below command.
#/scripts/install_lets_encrypt_autossl_provider
If I enabled AutoSSL for a cPanel account, the SSL checker will check SSL certificate of all domains of their account in every 24 hours. While checking this, the SSL provider will automatically install a certificate if the domain has not a valid certificate. Consider the scenario, if you have cPanel account and it has more than 1 domain and you want to enable AutoSSL for domains except for one domain. By default, the AutoSSL provider will install SSL certificate for all domains. This tutorial will help you how to disable AutoSSL for a particular domain of the cPanel account.
Domain-specific AutoSSL exclusion
In cPanel & WHM version 66, they added the ability to exclude individual domains from AutoSSL via cPanel’s SSL TLS Status interface (Home >> Security >> SSL/TLS Status).
Please make sure that your server has the latest version of cPanel software. You can check the version by running the following command as root.
#cat /usr/local/cpanel/version
If it’s not updated to latest version, change it to the latest version. You can do this by executing the below script.
#/script/upcp
To exclude domains from AutoSSL, perform following steps.
1) Login to cPanel.
2) Go to ‘Home >> Security >> SSL/TLS Status’.
3) You will get the window as shown in the below screenshot.
4)Then tick the domain name which you don’t want SSL and click “Exclude Domains from AutoSSL”.
Please note: First, you need to uninstall SSL certificate from the domain which you don’t want AutoSSL.
Use the below steps to uninstall SSL certificate from the domain.
1) Login to cPanel.
2) Go to ‘Home >> Security >> SSL/TLS’.
3) Then click “Manage SSL sites”.
4) Then select the domain which you don’t want SSL and click “Uninstall”.
If you need any further help please do reach our support department.
Founds this useful however unsure how long it takes for the changes to occur with emails?
First it tells you to tick the domains you want to exclude. However, none of those domains have tick boxes! Then it says “First…” First? Why didn’t it present that first? Well, after you do the deleting that has to be done FIRST, then the domains have tick boxes when you go back to them.
A use case (example) of why one might want to do this would help. Please consider adding some context. Thank you!
A very good use case would be when a user wants to use a rapidssl on the main domain(used for a ecommerce store), and then AutoSSL for all his personal addon/sub-domains. Although can you install a full-fledged cert on the main domain after you exclude this – that is something that needs to be tested.