It seems that im unable to upload a bought certificate for mtls.
What is the issue you’re encountering
I don’t know where to start within cloudflare, do i need to have the business tier?
Was the site working with SSL prior to adding it to Cloudflare?
Yes
What is the current SSL/TLS setting?
Full
What are the steps to reproduce the issue?
I’m trying to implement mTLS for a single route on my domain to secure a webhook endpoint.
We bought a certificate and want to upload it, but are unable too.
I understand that mTLS is a feature available on the Business plan, but for our use case, upgrading to a $200/month plan seems like overkill to secure one route with mTLS.
Could you advise on alternative solutions, such as:
Setting up mTLS on just the required route without upgrading plans.
Configuring this route to bypass Cloudflare while maintaining mTLS directly on our origin server.
Any other recommendations that would allow us to achieve this level of security with minimal additional cost.
If that is not possible we of course want to take alook at the business plan.
Sorry, I realize I could have been clearer in my initial post. sorry for that.
We’re running a Kubernetes environment and are using Cloudflare to handle DNS and SSL for our services. For a specific route, we want to implement mTLS to secure a webhook endpoint.
The challenge is that Cloudflare currently fronts all traffic, and our understanding is that enabling mTLS on Cloudflare requires a Business plan. We’d like to avoid upgrading to the Business plan if possible for this single route.
If there’s no way around it, we’ll evaluate the Business plan, but we’re looking for cost-effective alternatives first.
I’ve not yet spent enough time on mTLS, but the docs do make it seem like that mTLS worker binding falls under the same category as general mTLS usage. So perhaps any use of mTLS requires a Business plan.