First, thank you for your help.
Second, I’m not an expert IT person, but instead a healthcare provider trying to run a small non-profit website, securely.
I started using cloudflare last year, have been on free plan, using universal SSL option.
On windows 2016 server, IIS 8
I’d like to arrange the Cloudflare settings so I can have https url line Lock symbol status using my own domain name, not the sni.cloudflaressl.com certificate.
Is it my understanding that I need to purchase a $5/mo Edge Certificate from Cloudflare? If so, I don’t understand how this can be full encryption from viewer to cloudflare to my server if I have not installed on my server or used a CSR to generate?
Can anyone put in basic terms what I’ve missed or need to do, in order to get full domain branded ssl from viewer to cloudflare to my origin server?