SSL and Cert setup properly, but cert chain not trusted


#1

I use the free SSL generated for my domain with Universal certificate enabled, however browsers don’t detect it as trusted.
Here’s what the sslcheck says:
https://www.sslshopper.com/ssl-checker.html#hostname=https://dev.streetcred.nyc:5009/

I figured the free SSL would still be trusted since it’s issued by CloudFlare. Is this not the case?

Thank you


#2

That’s essentially a Cloudlfare self-signed certificate that’s only recognized by Cloudflare’s proxy servers when they connect to your site.

Their Support document explains the cert and has a warning at the end:


#3

Adding more info:
Your subdomain isn’t going through Cloudflare, so that’s why the Origin certificate is showing up in an SSL scan, rather than Cloudflare’s Universal SSL certificate, which is signed by…Digicert?

I suspect you’re not using Cloudflare because your service is using Port 5009, which can’t be proxied by Cloudflare.