I recently signed up for Bluehost.com that offers Cloudflare CDN services. I transferred 5 domains from 1&1 and activated all 5 domains to use Cloudflare CDN. Only 1 domain has been activated for FULL “Encrypts end-to-end, using a self signed certificate on the server” and the remaining 4 domains are configured as FLEXIBLE “Encrypts traffic between the browser and Cloudflare” and not able to enable FULL “Encrypts end-to-end, using a self signed certificate on the server”.
How do I troubleshoot/solve this issue?
Any advice and suggestions are greatly appreciated.
Even Full does not offer fully secure encryption as a middle-man could still intercept these requests. Only Full strict is really secure in this context.
What you have to do is to configure either a publicly trusted certificate on your server or a Cloudflare Origin certificate. Once that is in place you need to switch to Full strict and you should be good to go.
Basically, if you sign up to a host provider (Bluehost) that has a partnership with Cloudflare and you add the domain from the host provider cPanel, then you will not have access to making any changes to the encryption options I mentioned above.
The way you solve the above issue is not to use the cPanel or webpage from host provider to add your domains to Cloudflare and just add your domains directly to your Cloudflare account and then point your nameservers as suggested to Cloudflare.
The reason 1 of 5 domains was allowing me to make the changes to origin server encryption settings was that I accidentally added it first to Cloudflare.
i really appreciate your help and thought this additional information would benefit you and everyone reading this post.