Page tree
Skip to end of metadata
Go to start of metadata

For cPanel & WHM version 68

(WHM >> Home >> Server Configuration >> Tweak Settings )

Note:

When a user accesses cPanel, WHM, or Webmail on an SSL/TLS port with the HTTP protocol, the web server redirects the user to the URL of the server's hostname with the HTTPS protocol. For example, if the server's hostname is host.examplehost.com, http://www.example.com:2083 will direct the user to the https://host.examplehost.com:2083 location.

Choose the closest matched domain for which that the system has a valid certificate when redirecting from non-SSL to SSL URLs. Formerly known as “Always redirect to SSL/TLS”

This setting allows you to redirect users to the proper SSL/TLS ports when they visit specific URLs. This setting defaults to On.

When you enable this setting, the system will attempt to redirect in the following order:

  1. Redirect to the Origin Domain Name if an installed certificate secures that domain an installed certificate.
  2. Redirect to a wildcard domain that matches the name on the main service certificate.
  3. If no domain matches the domains on any certificate, then redirect to https:// protocol for the domain.

Warnings:

  • If you disable this option, users may send their passwords to these links without encryption. We strongly recommend that you do not disable this option.
  • The Require SSL option in the  Security section of the Tweak Settings interface (WHM >> Home >> Server Configuration >> Tweak Settings) forces SSL direction by default. We recommend that you do not change this setting.

  • The system will redirect users who navigate to the /cpanel, /webmail, or /whm paths of their domain to a respective port, but will not be redirected if they enter the corresponding subodmain. For example:

    • When a user accesses www.example.com/cpanel, www.example.com/webmail, or www.example.com/whm, they will be redirected to www.example.com:2083, www.example.com:2096, or www.example.com:2087  respectively.
    • This rule does not apply when a user accesses cpanel.example.com, webmail.example.com, or whm.example.com.
  • As of cPanel & WHM version 68, we only support Transport Layer Security (TLS) protocol version 1.2

    • We will only support applications that use TLSv1.2
    • We strongly recommend that you enable TLSv1.2 on your server. 

Note:

The Calendars and Contacts interface (cPanel >> Home >> Email >> Calendars and Contacts) requires that your third-party client supports redirection.

Non-SSL redirect destination

Note:

If you enable Always redirect to SSL/TLS, the system ignores this setting.

This setting allows you to specify how to redirect users who access cPanel & WHM via the /cpanel, /webmail, or /whm paths without SSL. Select one of the following options:

  • Hostname — Redirects users to the server’s hostname (for example, host.example.com:2082, where host.example.com represents the server's hostname).
  • Origin Domain Name — Redirects a user to their main domain (for example, example.com:2082, where example.com represents the user's domain).

This setting defaults to Origin Domain Name .

SSL redirect destination

Note:

If you enable Always redirect to SSL/TLS, the system ignores this setting.

This setting allows you to specify how to redirect users who access cPanel & WHM via the /cpanel, /webmail, or /whm paths with SSL. Select one of the following options:

  • SSL Certificate Name — Redirects users to the domain that the website's SSL certificate secures. You can view this certificate in the Manage Service SSL Certificates interface (WHM >> Home >> Service Configuration >> Manage Service SSL Certificates).
  • Hostname — Redirects users to the server’s hostname (for example, host.example.com:2083, where host.example.com represents the server's hostname).
  • Origin Domain Name — Redirects a user to their main domain (for example, example.com:2083, where example.com represents the user's domain).

This setting defaults to SSL Certificate Name.

Logout redirection URL

This setting allows you to redirect users to a specific URL after they log out of cPanel.

This setting defaults to No redirection.

Additional documentation