I enabled “Certificate transparency monitoring” (see https://blog.cloudflare.com/introducing-certificate-transparency-monitoring/) today for all my domains.
A couple hours after the “activation” email, I suddenly get an email for a lot of my zones, notifying me about the issuing of an SSL cert for the domain of my zone.
I however didn’t create any certificates.
Cloudflare has observed issuance of the following certificate for mydomain or one of its subdomains:
Log date: 2019-08-13 18:06:16 UTC
Issuer: CN=COMODO ECC Domain Validation Secure Server CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB
Validity: 2019-08-13 00:00:00 UTC - 2020-02-19 23:59:59 UTC
DNS Names: => list of all kinds of domains, among 1 is mine.
I am using Cloudflare shared SSL.
Am I assuming correctly that this was cloudflare creating the SSLs on my behalf for the “shared SSL”?
Would it be possible to filter out (aka not report) the cases where Cloudflare itself creates the ssl cert on my behalf?