What is the name of the domain?
blindsoft.net
What is the issue you’re encountering
how can I make the client certificate usable after I create it using cloudflare?
What is the current SSL/TLS setting?
Flexible
Is it about the mTLS or you’re referring to something else? 
Should be fixed to not cause some known issues such as mixed content errors, redirection issue and more in future.
correct, MTLS. I have it provisioned, as in I have the info needed to make it work. however, I don’t know how to actually use it. do I need to do something wiht openSSL
Cloudflare’s mTLS can be used in at least two scenarios which I’ve used it since before. It’s either with a combination of Cloudflare Zero Trust, or like directly with web servers such as Nginx (depending on your use case and infrastructure you’re having and able to maintain).
May I ask if you’re managing some microserivces on your server, or maybe some kind of an IoT project running, or do you require some protection for your Web application such as /wp-admin area of WordPress?
What’s your use case or rather what you’re trying to, or wanting to, achieve? Maybe you require some different approach and not exactly mTLS?
2 Likes
ugh, I don’t think you are understanding.
what i’m trying to ask is, how would I, after creating the certificate on the cloudflare side, actually get it running?
a lot of people say I have to like put it on a yubikey, which can be done.
I have the PEM, and the dir, and stuff like that. but do I use like openSSL to make it into a certificate and put it on my device like areal certificate?
You need to explain your use case first, as the answer depends on it. How do you plan to use the certificate? What exactly is it that you want this certificate to do for you?
2 Likes
o. so I plan to have it protect a WordPress admin page
In such case, I’d suggest you to configure Cloudflare Access for such case 
See below post for more information:
Useful step-by-step instructions:
1 Like
so basically I wouldn’t be able to use MTLS for wp-login?
In case to protect WP Admin area (login) by using the Cloudflare Access, which is easier to setup, you wouldn’t have to use mTLS.
However, if you’d like to try out and experiment, learn, you can always either combine both, or use only one.
I think I’m going to stick with MTLS. I just have to know where to actually install it at the client level.
I can’t figure out weather to install it like a normal CA on a device (phone or tablet) or install it on a yubikey or nitrokey
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.