Thanks for being patient… My lack of progress is not because of my lack of effort, I assure you. I created saved Origin Certificate and Private Key into separate files.I also save the PEM file.
Installing Origin CA certificate on origin server–is what I do not understand how to do. I hoped that GoDaddy would have been helpful— They seemed like they were trying, but some of their advice seemed opposite to what I was hearing here and on the video tutorials.
Am I able to install Origin Certificate and Private Key myself through Cpanel?
I don’t use GoDaddy nor cPanel. You really need the support of your host in this endeavor. All Cloudflare can do is provide an alternate cert if your host has poor support for SSL/TLS. I know it’s a struggle, but GoDaddy isn’t known for being very helpful.
I do appriciate your time… I know you are frustrated trying to walk me through the process.
I couldn’t text message you through how to take out an appendix. I have nothing but good things to say about CloudFlare… I created and have saved the Origin Cert/key as a Txt and PEM file. I also saved the Private Key generated during that process as a Txt. I will try again with GoDaddy Support— I am sure I will get a different person.
I want to do it by chat—so I can past the key/cert when needed. The chat does not have a way to upload a file.
Do you think the following wording is clear for what I need them to day.
"I recently installed CloudFlare to utilize their free SSL Cert. I have already installed the Private Keys, CSR and CRT, It looks liek it is working, but the process is not complete. I need GoDaddy to install the Origin Cert and Private key to complete the process-- I can not do this through CPanel. It has to be done by GoDaddy. " I will at least know I am asking the correct question/giving them the correct instructions. Then if they do not understand what I am asking, I can ask if they could kick it up to a higher support teir.
That might be the original certificate from GoDaddy. Best practice on certs is to include, literally, dellazanna.com and *.dellazanna.com. This is typically the default for Cloudflare’s Origin CA cert.
I don’t know why the top image didn’t include the www or jennifer subdomains.
Dam, I think you might be correct, but no idea how to fix it. I had a free SSL Cet through ZEN plug in. This is what I got when I ran it through thta site.
Common Name: dellazanna.com
Subject Alternative Names: *.dellazanna.com, dellazanna.com
Valid From: July 20, 2021
Valid To: October 18, 2021
Issuer: R3, Let’s Encrypt Write review of Let’s Encrypt
Serial Number: 039569c1913b2e16c0d7c447fa6c0a5af8ea
My certificate was stil from the old Free SSL. GoDaddy could see the CloudFlare Certificate, but it was no associated with any domain— That is what he said.
GoDaddy walked with through deleting it and all SSL certificates and he manually deleted it from the server.
I would like to start over with CloudFlare… start from scratch, so I know I followed the steps in order. I made a Cert Signing Request. Any Red Flags I should be aware of deleteing the domain and starting over?
I read “If DNSSEC is activated via Cloudflare, remove the DS record from the registrar configuration in the DNS app before removing your Cloudflare domain.” and I did that.
Thanks to GoDaddy’s Tech Support my original SSL problem ended up being unrecoverable. Many Thanks for your help and patience.
Called GoDaddy for help with the persistent expired SSL cert from ZEN that I tried to delete several times. GoDaddy walked me through re-deleting the SSL CERT and when they checked they still found it on their server. Whatever they did after that— I lost my main domain completely and somehow they corrupted my subdomain. I tried to restore both with backups—still did not work. Figured it might be easiest to just delete everything and start over. They wanted me to pay for a Tech Support package–after they trashed it.
After seeing the video below, I understand how my questions must have frustrated you. I was done in 10 min. A key stumbling point for me was that I did not know that Origin Certificate is the same as Certificate CRT. Thanks for everyone’s help. Now setting up the sites this weekend.
I had it off initially when I was setting it up and had the same issues. I searched the Community Forum for the topic and saw one that instructed the person that it should be ON, so I turned it back on. Maybe I read it wrong.
I just shut it off again and will give it a at least 5 minutes to take effect. I have a little triangle next to it saying it was changed a few seconds ago. I will wait until that is gone and try to log back in.
I am not sure what aspect of building the website I need to check or do to to address your comment “it needs to work with HTTPS” before adding the site.