Cert Authority issue with unproxied subdomain

What is the name of the domain?

‘avcloud.work’

What is the error number?

No Error Number

What is the error message?

net::ERR_CERT_AUTHORITY_INVALID

What is the issue you’re encountering

When I unproxy ( - DNS only) a subdomain, I receive a net::ERR_CERT_AUTHORITY_INVALID error. When checking the cert, it shows ‘unifi.local’ (Ubiquiti router). All of my other proxied () sites work as expected, passing through to Nginx-proxy-manager, then to the site. What Cloudflare settings do I need to change/allow to ensure the non-proxied sites work as expected.

What steps have you taken to resolve the issue?

Updated the following, with no success:

• subdomain is unproxied
• changed SSL/TLS encryption from Full → Full (Strict)
• Always Use HTTPS: ON
• Minimum TLS: 1.0
• Opportunistic Encryption: ON
• TLS 1.3: ON
• Automatic HTTPS Rewrites: ON
• I created 2 config rules, one for proxied sites, and one for non-proxied sites
  • proxied sites: Automatic HTTPS Rewrites: ON + Browser Integrity Check: ON
  • unproxied site: ^ both above: OFF + Opportunistic Encryption: ON/OFF (neither helps)

I have messed with the above settings to no avail, yet.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Full (strict)

What are the steps to reproduce the issue?

Unproxy the subdomain.
Refresh the site (after a couple of minutes).

Cloudflare won’t ever interfere with any host names, where the Proxy status has been set to Unproxied () / DNS-only, so it doesn’t matter what kind of settings you’re playing around with, on Cloudflare.

Issues such as e.g. the certificate error you’re mentioning, will need to be fixed on the sever, that has the IP address, that you’re pointing the individual DNS record to.

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.