I had the same issue ("The “cPanel (powered by Sectigo)” provider cannot currently accept incoming requests.") for multiple sites for over a week and was able to install Let's Encrypt in for auto SSL in under a minute by following this documentation:
docs.cpanel.net
I hope this helps someone else.
The Let's Encrypt Plugin | cPanel & WHM Documentation
This plugin allows the AutoSSL feature to issue certificates from the Let's Encrypt™ provider.
docs.cpanel.net
I hope this helps someone else.
That's atypical of our experience with the current issue.
We run a fleet of servers, and we've never waited more than a few minutes for a certificate request to be accepted with scripted retries.
This morning we had a few servers with "cannot currently accept incoming requests" errors, and all were sorted within 40 seconds of scripted retries.
For reissue situations of existing certificates, you should always see the errors in your logs well before the certificates actually expire.
For new accounts where the requests show a rejection in the logs, running a scripted retry until the request is accepted has always been successful for us.
It's definitely a major fault which should be sorted out, but with suitable mitigation, there's no reason for clients to suffer certificate outages.
Alternatively, so long as your operation fits within the rate-limits imposed by Let's Encrypt, just switch to their service for the interim at least.
Regards,
LBJ
I was able to get a clients domain into the queue - and it has sat there for over 2 days. I have killed the queue and am now trying to run and rerun autoSSL to get them back into the queue.. The clients account is brand new, so there is no SSL installed and its a tad unacceptable they need to wait all this time for it to be provisioned. Given the length of time this thread has run its obvious cPanel need to sort something out.
Any chance you can enlighten me as to this script I can run that will retry getting a users domain into the queue?
Any chance you can enlighten me as to this script I can run that will retry getting a users domain into the queue?
It's covered in a post a page previous in this current thread...
https://forums.cpanel.net/threads/t...-accept-incoming-requests.694129/post-2948185
You can modify that basic example to only run for one user, or even to simply run on the last log with a "cannot currently accept incoming requests" error recorded inside it.
Regards,
LBJ
For *anyone* having issues with domain certificates, please, switch to Let's Encrypt and then report back if that improved the behavior.
Just providing feedback as requested.
We tried Let's Encrypt early on with this current problem.
However, we provide every client with a permanent secondary server access method via a subdomain on a reserved domain of our own. Clients can use that method of access prior to redelegation and in various emergency situations such as where their domains are expired etc.
Over all our servers, that results in thousands of certificates required which include the same root domain name. Let's Encrypt limit requests to 50 per single domain per week as per...
https://letsencrypt.org/docs/rate-limits/
So after issuing certificates for 50 of our clients, Let's Encrypt then refused all further certificate requests over every one of our servers.
We submitted an exemption request to Let's Encrypt for our alias domain, but that wasn't a fast process.
While waiting for Let's Encrypt to process our exemption, we scripted automatic retries to run whenever Sectigo posts a "cannot currently accept incoming requests" error in the logs.
We now operate adequately with Sectigo and all certificate requests are accepted within a few minutes at worst. Our Let's Encrypt exemption has come through since then, but we're now fine with Sectigo. We ran a test run on one server with Let's Encrypt, and it was also fine with the exemption in place.
It would be nice if cPanel could provide the same simple retry logic for Sectigo within their own code for the benefit of all users.
Best regards,
LBJ
---
EDIT - Additional...
I've previously provided a basic example of code to handle retries at...
https://forums.cpanel.net/threads/t...-accept-incoming-requests.694129/post-2948185
You can modify that basic example to only run for one user, or even to simply run on the last log with a "cannot currently accept incoming requests" error recorded inside it.
Last edited:
Not sure if this applies to your scenrio, but we did experience long queue times (5 days) for the initial domain SSL that have financial related words in the domain (ours had the word "capital", even though it was not financially related website).
Never mind .. I just keep spam clicking renew AutoSSL until it finally assigned it one. Got it working now
The Let's Encrypt Plugin | cPanel & WHM Documentation
This plugin allows the AutoSSL feature to issue certificates from the Let's Encrypt™ provider.
docs.cpanel.net
| Thread starter | Similar threads | Forum | Replies | Date |
|---|---|---|---|---|
| E | “cpanellogd.lock” is not a valid service name. | Server Management | 1 |
| Similar threads |
|---|
| “cpanellogd.lock” is not a valid service name. |