There was a connection error shown to the visitors whenever they tried accessing a website using https without an SSL configuration in cPanel and WHM’s 11.40 version.
Later in 11.42 version, Apache’s configuration was modified for proper usage of proxy subdomains with SSL.
It is found that in version 62 and after 62 of cPanel and WHM, it enables SNI functionality by default for SSL certificates on proxy subdomains. Here the multiple SSL certificates are allowed by SNI to use a single IP address and port number.
Because of these changes, cPanel’s service SSL certificate is used by Apache in order to secure websites who do not have with them an SSL certificate. An SSL warning may appear infront of the visitors to sites without an SSL certificate, because Apache already used cPanel’s service SSL certificate in order to secure the site.
Before going through the steps, one must note that we do not ask anyone to bypass their server’s proxy subdomain configuration.
There are steps that can be put to use in preventing the usage of cPanel service SSL certificate for cpanel, whm, webdisk, and webmail subdomains.
It is seen that when one navigates to webmail.example.com, the server redirects them to https://example.com:2096 and makes the use of example.com domain’s SSL certificate to secure connection.
Proxy subdomains use the SSL certificate cPanel service. There are technical ways to check this usage and continue with the correct order of work.