I received a notice from my hosting company FlyWheel (wpengine) that my SSL cannot renew. I talked to my hosting support and they said I need to remove the AAAA record in Cloudflare. I don’t see in Cloudflare where the AAAA record is even listed. Would someone be able to help me, please?
If you have problems with the certificate renewal process, you have two options.
The first (and easier) solution is to simply download a Cloudflare Origin certificate and install it on your server. The problem with this is, it only works for websites proxied by Cloudflare. If the certificate is also used for other things (like email), it won’t suffice.
In that case, you need to create a Configuration Rule in Cloudflare like this:
Custom filter expression
Uri Path starts with /.well-known/acme-challenge/
Then the settings are...
Automatic HTTPS rewrites OFF
Browser Integrity Check OFF
Disable Apps ON
Security Level Essentially Off
SSL OFF
This should allow the certificate renewal process to succeed on the next try.
The AAAA record published by Cloudflare is not a problem but just how Cloudflare works.
1 Like
If you want to use the Cloudflare Origin CA certificate method mentioned, Flywheel has a guide on how to install a third-party certificate.
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.