SOLVED Disable SSL Notifications in cPanel 70?

[sys_alex]

Greetings,

with this new cpanel version an old problem is relevant again. There are new AutoSSL notifications enabled by default that i don't want functional.

In another thread this command disabled all notifications before:

whmapi1 set_autossl_metadata metadata_json='{"clobber_externally_signed":1,"notify_autossl_expiry_coverage":0,"notify_autossl_renewal_coverage":0,"notify_autossl_renewal":0}'

Can you please give us an updated version to this so we can disable again all notifications?

Thank you

 

[cPanelMichael]

Hello @sys_alex,

You can actually disable the notifications directly from Web Host Manager in cPanel & WHM version 70. Here's the pertinent section from the cPanel & WHM version 70 Release Notes:

Global options to disable AutoSSL notifications
In cPanel & WHM version 70, we added options to disable AutoSSL notifications for cPanel users. You can disable the following AutoSSL notifications in WHM's Manage AutoSSL interface (WHM >> Home >> SSL/TLS >> Manage AutoSSL):

Notes:

• If you deselect any of the following options, the system will also remove the corresponding option from cPanel's Contact Information interface (Home >> cPanel >> Preferences >> Contact Information).
• If you deselect any of the following options, the system sets the corresponding option to disabled in WHM's Contact Manager interface (Home >> WHM >> Server Contacts >> Contact Manager).
• The system will not send notifications to cPanel users for options that you disable.
• These options override the user's current settings.
• Notify when AutoSSL cannot request a certificate because all domains on the website have failed DCV. — AutoSSL cannot request a new certificate if all of the domains on a website fail domain control validation (DCV).
• Notify when AutoSSL defers certificate renewal because a domain on the current certificate has failed DCV. — AutoSSL will not attempt to renew a certificate if a currently-secured domain fails DCV. All currently-secured domains must pass DCV for AutoSSL to attempt to renew a certificate during normal circumstances. However, If the certificate will expire in three days or fewer, AutoSSL will drop coverage for the domains that fail and force a renewal.
• Notify when AutoSSL will not secure new domains because a domain on the current certificate has failed DCV . — AutoSSL will not attempt to secure new domains if a currently-secured domain fails DCV. All of the currently-secured domains and at least one of the unsecured domains must pass DCV for AutoSSL to attempt to issue a new certificate. However, If the certificate will expire in three days or fewer, AutoSSL will drop coverage for the domains that fail and force a reissue.

Note:

• If the certificate expires in three days or fewer, the system does not send this notification.
• Notify when AutoSSL has renewed a certificate successfully. — When AutoSSL renews a certificate, the system will send a notification.
• Notify when AutoSSL has renewed a certificate and the new certificate lacks one or more of the website’s domains. — AutoSSL renews a certificate even if the new certificate does not contain any of the domains from the previous certificate.
• Notify when AutoSSL has renewed a certificate and the new certificate lacks at least one domain that the previous certificate secured. — AutoSSL renews certificates even if the new certificate does not contain any domains from the previous certificate

Can you confirm if this helps?

Thank you.

 

[sys_alex]

I would like a way to do this using whmapi1 so i can automate the process in more than 1 server.

 

[cPanelMichael]

Hello @sys_alex,

I recommend using the set_autossl_metadata_key WHM API 1 function instead of whmapi1 set_autossl_metadata to avoid the need to use JSON in the command. Here's a link to our documentation on this WHM API 1 function:

WHM API 1 Functions - set_autossl_metadata_key - Developer Documentation - cPanel Documentation

Here's an example of the command you would use to disable all notifications found under "WHM >> Manage AutoSSL >> Options":

whmapi1 set_autossl_metadata_key key=notify_autossl_expiry value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_expiry_coverage value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal_coverage value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal_coverage_reduced value=0 ; whmapi1 set_autossl_metadata_key key=notify_autossl_renewal_uncovered_domains value=0

Thank you.

 

[sys_alex]

This is a great solution! It worked wonderfully. You should create a sticky with you last answer, since this may become a problem when more people get version 70.

 

[cPanelMichael]

This is a great solution! It worked wonderfully. You should create a sticky with you last answer, since this may become a problem when more people get version 70.

Hi @sys_alex,

I'm glad to see it worked well. I've included that information in a response on this thread since it's already pinned to the top of the General Discussion category and includes previous discussion on this topic.

Thanks!