SSL Configuration Challenges with Cloudflare Origin Certificates for ResAvenue

What is the name of the domain?

bookings.ajgrand.com

What is the issue you’re encountering

I’m setting up SSL for my subdomain bookings.ajgrand.com, hosted by a third-party provider (ResAvenue), using Cloudflare’s Origin Certificate. Despite providing ResAvenue with the required Domain Certificate (Origin Certificate), Root/Chain Certificate (CA Bundle), and Private Key, they report being unable to install the SSL. DNS is correctly pointed, and I need assistance ensuring the setup is compatible.

Was the site working with SSL prior to adding it to Cloudflare?

Yes

What is the current SSL/TLS setting?

Full

What are the steps to reproduce the issue?

I’m setting up an SSL certificate for my subdomain, bookings.ajgrand.com, which is hosted through a third-party booking service provider, ResAvenue. They’ve requested specific SSL files to enable secure connections, but we’re facing issues with getting it to work, despite following the setup steps.

Here’s what I’ve done so far:

  1. Origin Certificate and Private Key: I generated the Origin Certificate and Private Key for bookings.ajgrand.com via SSL/TLS > Origin Server in my Cloudflare dashboard. I then sent both files to ResAvenue.

  2. Root/Chain Certificate (CA Bundle): I downloaded the Cloudflare Origin CA Root Certificate from Cloudflare’s documentation page:
    ECC PEM (for ECC-based certificates)
    RSA PEM (for RSA-based certificates)

  3. I provided ResAvenue with the CA Bundle (Root/Chain certificate) along with the Origin Certificate and Private Key.
    Issue:

Despite providing ResAvenue with:

  • Domain Certificate (Origin Certificate)
  • Root/Chain Certificate (CA Bundle)
  • Private Key

They report that the SSL installation is not possible on their end. They are unable to proceed with the setup and are asking for additional support from Cloudflare.

Is there anything I might have missed, or any Cloudflare-specific configuration that could be causing this issue? Any guidance on how to ensure the SSL setup is correct and functional with ResAvenue would be greatly appreciated.

Thank you in advance for your help!

Hi @user5638,

What error are they receiving? If the issue is that when visiting your site they are seeing a SSL Self-Signed certificate error, this is normal as the SSL Origin Certificate is only trusted by the Cloudflare edge and requires Proxy mode to be enabled on your Cloudflare dashboard.

Hello, Thanks for your response…

They are not receiving any errors, They just say they are unable to install the SSL.
And ask us to send a proper certificate.

Well, The PROXY is already turned on.