Creating a Cert for servers on Azure

We are looking at getting some dedicated certs for our azure servers using our domain that is managed through cloudflare. The CNames are in the cloudflare DNS and the servers are on Azure.

Can I use the Advanced Cert Manager here to create the certs for our servers on Azure. My concern comes from this bit on the Managing Dedicated SSL Cert

Dedicated SSL certificates have several limitations:

Are not exportable for use outside of Cloudflare.

The best option is an Origin CA cert from Cloudflare. They’re only good for proxied servers, but it will let you run Full (Strict) mode here.

Thank you for that. I was able to create an origin cert. But how does this differ from the expensive SSL certs you can buy at digicert or godaddy?

Information overload. Sometimes finding the right question to ask is more difficult than finding the answer.

The overpriced certs from GoDaddy and DigiCert are overpriced by a factor of infinity.

The Cloudflare free certs only work on sites proxied by Cloudflare.

For sites not proxied by Cloudflare, Let’s Encrypt certs are free.

Thank you for that confirmation. Very glad I asked.

1 Like

A few more questions. Are these certs AS2 compliant? With SHA-256? And Drummond compliant for soc 2?

And what is the TLS level?

TLS level is configurable within the dashboard. https://support.cloudflare.com/hc/en-us/articles/360003205452-Using-Minimum-TLS-Version-in-Cloudflare-SSL-TLS

For compliance, see https://www.cloudflare.com/compliance/. The business plan guarantees PCI DSS 3.2 compliance https://www.cloudflare.com/plans/business/

For other compliance questions, you may contact support https://support.cloudflare.com/hc/en-us/requests/new.

1 Like

This topic was automatically closed after 14 days. New replies are no longer allowed.