Confirmed with Network Solutions their SSL certificate is correctly installed. Paused CF and used Qualsys Labs to verify cipher set used by NS cert. and then selected the same cipher set at CF SSL/TSL dashboard. Changed mode to “Full” only. Double checked at all DNS settings are correct at CF and that all 3 DNS entries are proxied. Checked the site multiple times while CF was paused to ensure it’s working and SSL is being served. Then un-paused CF and tried again. Sometimes it works and sometimes it doesn’t. NS is saying their SSL (and NOT CF’s SSL) certificate should propagate and that’s is the error is occuring. Sounds unusual to me and the existing setup was working fine for 4+ years; error 525 only started about 1.5 week ago.
What are the steps to reproduce the issue?
I have not un-paused CF. Just visit the site and click through different links. If error 525 doesn’t come up right away, re-freshing and/or clicking around will either make it appear or make it work. So unusual. Anyone have any ideas what’s wrong or what settings I can change at CF to correct this?
We generated an Origin Certificate at Cloudflare using a “CSR” file Network Solutions generated for us. We then gave the PEM file back to Network Solutions to install onto the server they use hosting our site. However, Network Solutions keep saying they can’t install it, because 1) “there’s no intermediate certs they were expecting”, or that 2) “the CF cert. is not activated”. Can someone help me figure what they are saying and how to correct this? Thanks.