Subdomain too deep

dash-crypto
#1

This tutorial covers a possible reason for the ERR_SSL_VERSION_OR_CIPHER_MISMATCH error when seen on a subdomain.

The Cloudflare universal certificates cover example.com and *.example.com. This means that it covers any subdomain one level above the domain you signed up with.

It will cover www.example.com and subdomain.example.com, as these are one level above the root domain, example.com.

The certificate will not cover www.subdomain.example.com or a.b.example.com, however, as these subdomains are too deep.

Solution:
You either need a $10/month dedicated certificate from Cloudflare, on which you can specify the subdomain you need to cover, or to set the record to :grey: and bypass Cloudflare altogether.

Links:




This is a Community Tutorial, most are wiki posts, so can be contributed to by Regulars and MVPs here, you can view all the community tutorials here. If there is a tutorial you would like to see, you can request one here.

Other great resources on this community include the Community Tips . These address best practices when configuring Cloudflare, how to fix issues you may see, and tools to troubleshoot. Also you can view Expert Tips, great posts on the community that can help users with a similar issue.

We encourage users to check out these great resources and the Cloudflare Support Centre before posting

2 Likes
SSL Error: Certificate Mismatch!
Community Tutorials