According to my server company, /usr/local/cpanel/etc/mycpanel.pem on my server is bad. This causes stunnel to die prematurely, and thus 2082 and 2086 not to be forwarded to external ports 2083 and 2087, and thus, no ssl connection possible on 2083 & 2087.

How can I fix this mycpanel.pem? Can I just replace it? Can I regenerate it?

When I look at it, I see two certificates in it and that's all. Is that correct? Should I be seeing something else?

I am way a newbie at linux, so if anyone has any ideas, please help me like I don't know anything.

Skelly,

It looks like this file is just the ssl cert info that cpanel uses - have you tried going through the unencrypted part of whm (port 2086) and re-installing the cert for WHM?

FWIW, my correctly working copy has a RSA private key as well as a cert - does yours have both those in it, or is it two certs?

-David

This is exactly what I see when I pico this file (other than I changed the codes so I can post it here):

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIID4zCCAsugAwIBAgIEAIWiaDANBekqhkiG9w0BAQQFADCBozELMAkGA1UEBhMC
VVMxCzAJBgNVBAgTAlVUMRcwFQYDVQQHEw5TYWx0IExha2UgQ2l0eTEeMBwGA1UE
ChMVVGhlIFVTRVJUUlVTVCBOZXR3b3JrMSEwHwYDVQQLExhodHRwOi8vd3d3LnVz
ZXJ0cnVzdC5jb20xKzApBgNVBAMTIlVUTi1VU0VSRmlyc3QtTmV0d29yayBBcHBs
aWNhdGlvbnMwHhcNMDIxMjIwMDIwODIwWhcNMDMxMjIxMDIwODIwWjCBtzELMAkG
A1UEBhMCVVMxHzAdBgNVBAoTFnNtYWxsYnVzaW5lc3Nob3N0cy5jb20xJjAkBgNV
BAsTHVNlZSB3d3cuZnJlZXNzbC5jb20vY3BzIChjKTAyMT4wPAYDVQQLEzVEb21h
aW4gQ29udHJvbCBWYWxpZGF0ZWQgLSBPcmdhbml6YXRpb24gTm90IFZhbGlkYXRl
ZDEfMB0GA1UEAxMWc21hbGxidXNpbmVzc2hvc3RzLmNvbTCBnzANBgkqhkiG9w0B
AQEFAAOBjQAwgYkCgYEA4H3kS+gVzly659Lf+g6NaE+5YCigT+yXbLZtg54zrqJf
v5up+jmNZkAZSr9TTyBjs0Q4BZArH8gtJuI0gz8ojhZHi1Q22DcCVMWo25px520M
VGB/fHY5Ladm+JZuZmh4rrm2CwNhEblVzMiKNI44NWhZ4gKzGbrZLeP24fuEaGsC
AwEAAaOBjDCBiTARBglghkgBhvhCAQEEBAMCBkAwDgYDVR0PAQH/BAQDAgTwMDUG
A1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwuZ2VvdHJ1c3QuY29tL2NybHMvdXRu
LmNybDAfBgNVHSMEGDAWgBT6hsnb4LrpePVLqNYV3/DT4WoUPDAMBgNVHRMBAf8E
AjAAMA0GCSqGSIb3DQEBBAUAA4IBAQAmNUC33Bza+CzKfyEezxIYoPs2cJuYQDJJ
0OdV2d+USSXW5ubYx2SPF05WJEeuVZ4oY09qyl2K/3GbrE5tgdwZcoozgrqnxlvo
Td0Fg15hRVLl1SdVpjlJqJKDyk1k83aHDJWY0QNzNKBGUx+OuVOo78nKVEIdyP3n
0HowNyZmcVAyKJQJc0OCgKxQQ1lhjNEXUyg9Zl/XdNS+wtcWwP7EZ2V9LfUhgVhd
HcQoLWcYEP0YEBQgewn0yv+7dZDL1DmTIA1gCTfrvXDmKJSvXBAAlQkr0CrUz56a
2b1W7BgFihkQe7bhxR8Wg+hFnVfX8Aq3NWa++90FNbGHU7HVoVTZ
-----END CERTIFICATE-----

I don't know exactly which cert to reinstall to fix this.

Fixed it!

Thanks to Andre from http://cydock.com

I ran /scripts/fixcommonproblems

All works fine now. :)