Community Tip - Fixing Error 526: Invalid SSL certificates

Error
Try the suggestions in this Community Tip to help you fix Error 526: Invalid SSL certificate.

Background
Error 526 indicates Cloudflare is unable to successfully validate the SSL certificate on the origin web server and the SSL setting in the Cloudflare SSL/TLS app is set to Full SSL (Strict) for the website. When this happens, you’ll see “Error 526: Invalid SSL certificate”.

Quick Fix Ideas

  1. If the origin server is configured to use a self-signed certificate, install a valid certificate on your origin server. To test to see if your origin has a self-signed certificate, run the following cURL command: curl -svo /dev/null --resolve example.com:443:123.123.123.123 https://example.com/, replace example.com with your domain name and 123. with your origin IP address. The response from an origin server with a self-signed certificate will contain * SSL certificate problem: self signed certificate. A self-signed certificate secures the connection between Cloudflare and your origin but will cause a 526 error when you try to connect to the origin directly.

  2. Check to make sure the certificate hasn’t expired, the certificate isn’t revoked, and that the certificate is signed by a certificate authority such as GlobalSign, Verisign, GeoTrust, Comodo, etc and is not a self-signed SSL certificate. You can also use a free Cloudflare Origin certificate instead.

  3. Check to make sure the requested domain name (hostname) is in the certificate’s Common Name or Subject Alternative Name (SAN) configuration. If you added a CNAME record for the hostname on Cloudflare, the Common Name or SAN may also match the CNAME target.

Lite Reading

Background Resources
Help Center
YouTube

Research The Issue
Community
Google

If You Need More Help
This community of other Cloudflare users may be able to assist you, login to Cloudflare and post your question to the Community. When you post on the Community make sure to include as much of this information as possible: the specific error message you are seeing, the URLs this is happening on, screen shot of the error, and the steps to reproduce the error. Please indicate what troubleshooting steps you’ve tried in order to help us help you.

This is a Cloudflare Community Tip, to review past tips click here.

Çevirme…traduzir…翻译…traducir…Traduire…Übersetzen…:greyg: Translate this Tip

FXISCT 102119

Error 526: Invalid SSL certificate but certificate is active
Error 526 Invalid SSL Certificate SSL Mode Set To Full
SSL error 526
Website is not redirecting to HTTPS
SSL not secure
Error 526 Invalid SSL Certificate
Error 526 Ray ID: 5a6c41299fe5a9c4 • 2020-06-21 08:10:41 UTC Invalid SSL certificate
Its been more than 24 hours, my domain didnt get a ssl
SSL ISSUE Activation
Website stoped working on change of SSL on my hosting server
Error 526: on Full Strict SSL with lets encrypt
Error 526 with Let'sencrypt SSL certificate
Community Tip - All Published Tips
I can't access my website. HELP!
526 SSL error
Diyoubeauty.store
Edge certificates
[HELP ]Problem with SSL Certificate in my subdomain
A record changed, but not propagating
SSL Strict Mode
Ssl configuration - site down - help!
Ssl configuration - site down - help!
Error 526 Invalid SSL certificate (running nginx)
526 Error, Invalid SSL certificate
Powerliens.com
Website not working after signup with Cloudflare
526 Error Need Help
Clear cache of my DNS
Error 526 SSL set to Full Strict
My subdomain doesn't work
Subdomain Invalid SSL Certificate
SSL ISSUE Activation
522 error with heroku app just in some countries/locations
Invalid SSL error
Help Webseite not working
Error 526 Invalid SSSL Certificate
My ssl certificate shows active.. but i am not able to load my site through https://
CloudFlare worker on specific path failing results in all calls to also fail
CloudFlare SSL Errors!
DNS advice
Moved the Hosting Files and Updated the A Record ends up "Error 526" error"
How to use a Dedicated certificate on a parent domain and sub domain?
Some Web Apps Error 526 Using Same CF Origin Cert
I can't log in to my wordpress website
Web server SSL not updated on Cloudflare. Error 526
Inexplicable 522 error on one of my domains
I have HTTPS and SSL on but still my site shows no secure
SSl is valid but still Site not secure
Online website for shopkeeper wholesale garments
Workers can not fetch port 8080
526 Origin SSL Certificate Error
Domain/hostname is still invalid
Weird SSL error
Erorr 526 help pls
Error 526 TLS Full (strict) even with Origin CA certificate
Email server
Error 526 how do I fix this?
Error 526 SSL Invalid changing the encryption mode from Flexible to Full (Strict)
Firefox site not showing
Google can't reach my sites with cloudflare
SSL Full (Strict) Mode and Digicert Certificate
CommunityTip - Security FAQ Read Me First
Error 526 on linking from facebook
Error 526 Help
ACTIVE SSL but Site says NOT SECURE
Help me plss
Problem with security certificate
ERROR 526 in my site (ssl)
Website not working after http change to https
My ssl is not working
Universal SSL with "Active Certificate" Status Fails
Do I need CNAME for subdomains to work?
Please help me!
How do I change my nameservers in CloudFlare?