I have a cpanel wordpress site that had AutoSSL set up, before moving to Cloudflare (free).
For a while everything was working fine. According to the browsers, the site’s SSL was signed by Cloudflare.
A while ago I started getting errors when AutoSSL tried to run:
“DNS DCV: The DNS query to “_cpanel-dcv-test-record.DOMAIN.COM” for the DCV challenge returned no “TXT” record that matches the value … forbids DCV HTTP redirections.”
And for the proxy subdomains, instead of forbidden DCV HTTP redirection, the errors end with:
“The web server responded with the following error: 401 (Unauthorized). A DNS (Domain Name System) or web server misconfiguration may exist. The domain “cpcontacts.DOMAIN.COM” resolved to an IP address “104.27.x.x” that does not exist on this server.”
Now, the site itself is still working with https signed by CF, but I cannot send email over SMTP because the mail subdomain’s SSL cert is off.
My hosting provider told me that AutoSSL can’t renew if the nameservers point to Cloudflare.
But why won’t Cloudflare’s SSL work for every subdomain? According to my dashboard, I have a Universal Certificate for *.DOMAIN.COM, DOMAIN.COM
I thought about setting the nameservers back to default so AutoSSL can run once again… but that doesn’t seem like a professional solution.
What should I do?