docs.zeta.house
Access
Not understanding why multiple domains in a CF application in Zero Trust doesn’t work
Tried it and it didn’t work.
Try it.
Ok so look at 2 previous posts:
The main problem here is pretty simple.
Suppose you create a CF access application with multiple domains:
But this doesn’t work, it causes one to redirect the other domains always to the first domain.
The DNS settings is SUPER simple, it just looks like this, it has just a bunch of workers associated to each subdomain.
The only solution is to create a separate access application for each subdomain.
Why would CF access applications support multiple domains, if it doesn’t enable the ability to create a single access policy across all those domains?
Did you defined the “default” one to which redirect?
That’s why they’re called Applications, to separate them and have better control.
Despite, your case is related to the SaaS or not? 
Looks like you’re going deep-level as well, may I ask if you’re using Advanced Certificate Manager as well?
Here are more examples when and how to apply the wildcard * (apex):
There is “default” one defined? I’m not sure what you are referring to here.
The advanced certificate manager is not relevant here, I’m just talking about DNS and redirections occurred by the Cloudflare Access Gateway. We use advanced certificate manager alot of many things.
We’ve built a lot of CF worker applications, and looked at all the docs. But this limitation of CF is particularly weird, and seems kind of a bad design.
It sure looks like this should work:
Are you saying that once you authenticate on any of those hostnames, Access responds with a redirect to just one of them? You’re seeing a 30x response at the end of the authentication that points to, which, the first on the list?
