I was wondering whether the cloudflared daemon is relying on its CA trust store or relying on the system it’s installed on. It’s important because I think if it relies on the system trusted CAs, then it could be possible to intercept the traffic on a device which is managed by the organization. ( e.g. company laptop)
I will try to setup and figure out myself however wanted to discuss here with the developers as well.