Getting Invalid SSL certificate error with Plesk

Hello, I am using Plesk Obsidian 18.x for managing my websites, somewhy after adding new domain and a new SSL certificate (issued from SSL > Origin Server) and Cloudflare CA root certificate as .ca.crt field, after like 30 minutes I’m getting the same error.


Plesk panel identifies SSL as
image

Details

I have HSTS enabled in both Cloudflare and Plesk panel, and SSL stapling in the panel.
Domain: zeronet.space.
DNS in Cloudflare:


DNS in panel (It keeps saying that domain is not resolvable but it works):
image

Thanks in advance.
Dimitriy.

2 Likes

I guess this is the main problem?
image

Self-Signed Cert?

Yes, probably


As said there, but I don’t know how that’s possible when I’ve specified Origin CA certificate and added Cloudflare root CA

Do you have flexible set in the overview tab of the SSL/TLS settings?

If so, then the certificate will show as untrusted!

1 Like

I have Full (strict) currently set.

1 Like

That’s good!

So is the cert expired? What Who is the issuer?

1 Like

No its not expired, I’ve re-issued it today, in the Origin Server section

Then the changes may take up to 24 hours to fully take effect!

I think that problem is in the certificate file itself, i’ve checked it and it consists of 3 parts

-----BEGIN PRIVATE KEY-----
...
-----END PRIVATE KEY-----

-----BEGIN CERTIFICATE-----

-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----

-----END CERTIFICATE-----

First one is key, second is the certificate itself and third is Cloudflare’s root CA i’ve specified

Okay, for first i’ll try waiting without root CA and then with.

See this article

1 Like

It’s working now after I’ve removed Cloudflare’s root CA from the certificate file! Thank you anyways very much!!!

1 Like

You’re welcome!! :smile: :smile: :smile:

1 Like

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.