I have moved my 3 sites in Flexible SSL into Full Strict by several days, but only 1 domain has been moved in Full Strict, other 2 sites still use Flexible SSL, I can verify it through the certificate checking, Flexible SSL is issued by COMODO ECC, instead Full Strict is issued by GlobalSign CloudSSL CA.
All generated certificates have been uploaded on cpanel and they are working, I’m sure of this because all connections at the origin for that sites are all over SSL, these 2 sites are having many issues with 522 errors and maybe it depends on the SSL setting which is misconfigured on Cloudflare database.
Someone else who had the same issue? There’s a limit of sites where is possible enable Full Strict? In faqs I read that it would be a trademark problem if some domain names aren’t automatically swiched to custom SSL.
So it’s possibile force in some way the use of SSL Full Strict for these domains?
Thanks for any support about that.
I found the problem, the sites are using the Universal (Shared) certificate as SHA 2 ECDSA
instead SSL Full Strict needs the SHA 2 RSA certificate.
Now, how can I replace ECDSA with RSA?