I installed free ssl certificate on my website tomanzi.com.ng, wholesale.tomanzi.com.ng, warehouse.tomanzi.com.ng from cloudflare some days ago, and it was successful but the SSL/TLS Status is still having problems on my cpanel.
Please check the attachments : for better understanding:
Given from cPanel AutoSSL, or Cloudflare Origin CA certificate, or some other?
If you’ve used and generated a Cloudflare Origin CA certificate, it would always show some alert in cPanel interface since it’s self-signed one which works only for HTTP(S) traffic while using Cloudflare proxy . Meaning, your e-mail related services wouldn’t function and work at all. cPanel wouldn’t be able to renew it neither. To get rid of cPanel AutoSSL notifications, uncheck it from renewing process.
Otherwise, stick to the cPanel AutoSSL, use Full SSL (not strict), and make sure to allow both HTTP and HTTPS traffic so cPanel AutoSSL can renew it. Nevertheless, allowing HTTP traffic IMHO isn’t the best practice nowadays.
I’d rather keep it secured & safe, including the Full SSL (Strict).
There are posts around some workaround(s) here about this topic too. Sharing below, hope it helps. In the meantime, feel free to write back.
From the shared screenshot above, you also have deep-subdomain issue like the www.wholesale.tomanzi.com.ng which can be fixed by using the Advanced Certificate Manager:
My domain and subdomain is showing not secured on Android but is secured on desktop. tomanzi.com.ng, wholesale.tomanzi.com.ng, warehouse.tomanzi.com.ng Please check attachments for better understanding
Domain SSL/TLS STATUS is showing this and I don’t understand
The certificate has the For following errors: Certificate #2 (ST=California,L=San
Gene Authority,O=Cloudflare, Inc.,C=US) has 2 validation Current User errors:
The Untrusted notification is to be expected when you make a direct connection to a hostname that uses a Cloudflare Origin CA certificate. Cloudflare Origin CA certificates are not trusted by web browsers and are used to secure the connection between the origin server and the Cloudflare proxy. When you use a Cloudflare Origin CA certificate with a record that is Proxied, you will not see the Untrusted notification because Cloudflare trusts that certificate.
Mr epic.network, I have spent almost 5 days on cloudflare community, my problem not solved, I have message before and you replied:
Please do not open duplicate topics. It dilutes resources and makes it take longer for you and others to receive assistance.
Duplicate of Free SSL cert questions
Please how can I get my problem solved. I’m having 4 issues with my domain since I changed my namesavers to cloudflare, I have scroll almost all the topics but still can’t fix my problem please can you help solve my issues,