Host Says to drop plugin to renew certificate each year.

Hi,

all three issues point to the same thing, it seems like your hoster needed to do something which required your site to be available over https://. This is not something which is common when renewing a certificate. Really Simple SSL does issue the redirect to https://, can add a redirect to your .htaccess file and sets the Site Adress to https://, which is what you’d want if you want your site to have SSL. With the number of active installations Really Simple SSL has, it’s safe to say hundreds of certificates are being renewed daily on sites with Really Simple SSL enabled. We very rarely encounter support request with similar issues as yours.

To renew a certificate, normally the new certificate and corresponding key need to be updated on the webserver. It could be your hoster has extra procedures before renewing a certificate and thus this is why they needed to make the changes. Without knowing these, I can’t tell why they did it.

Mark

Now i have another site on different host that also says this plugin stoip autossl from renewing in cpanel. They say the httaccess redirect prevents comodo form validating the pki txt file that is used to verify my domain. Comodo does this over http and the htaccess file redirects it to https and that is where the issue is. Is there a way to stop redirecting for the txt file used for validation?

You can disable the redirect in settings/ssl.

It’s a bit strange to require a http connection to renew the SSL certificate though. Wouldn’t recommend a hosting company that requires you to drop your redirect for the renewal every year….

It was cpanel that has this requirement for autossl. It is stated in the cpanel forum https://forums.cpanel.net/threads/autossl-htaccess-whitelist.562651/

do you know what to put in an httaccess file to allow a single folder to accessed over http

The forum thread you posted contains some code that might help:

RewriteCond %{HTTPS} off
RewriteCond %{REQUEST_URI} !^/\d+\.BIN_AUTOSSL_CHECK_PL__\.\w+\.tmp$ [NC]
RewriteCond %{REQUEST_URI} !^/\.well-known/acme-challenge/ [NC]
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

If you add the second and third line to the Really Simple SSL lines in the .htaccess, in the same way as it is used here, that should fix it, according to that post.

• This reply was modified 7 years, 5 months ago by Rogier Lankhorst.

Thanks so much! That code along with deleting another part of my httaccess file that came from a security plugin to stop reading of txt files made it possible to renew my ssl. I have a few other websites coming up for renewal. Since i did a few things that fixed the issue, i will do a few tests to see exactly what was stopping the renewal.

Glad to have helped!

To make sure Really Simple SSL does not overwrite the .htaccess anymore, I would recommend to enable the option “stop editing the .htaccess file”.