I use Cloudflare’s Flexible SSL with Universal SSL on my website + API. I recently had a client contact us saying that we changed our Certificate Issuer and it broke their connection because they use a list of “trusted certificates.”
I don’t really know what this means or why they do this. But, they asked that we notify them when our Certificate Issuer changes in the future.
I looked into it and it seems Cloudflare did change our certificate issuer recently to Let’s Encrypt. I see here that Cloudflare may change the issuer: Certificate authorities · Cloudflare SSL/TLS docs
I have a few questions:
- How often does Cloudflare change the issuer?
- Is there a way to prevent the issuer from changing?
- Does using “Advanced Certificate Manager” let you prevent the issuer from changing?
This page says “Advanced Certificates” let you “choose the Certificate Authority to issue the certificate.” Advanced certificates · Cloudflare SSL/TLS docs