AI Knowledge Desk

Knowledge Base / Common Problems / What to do if you custom SSL from cloudfare is not working

What to do if you custom SSL from cloudfare is not working

Here is what to do if you just installed an SSL from cloudfare but its not working.

25 November 2024

Cloudflare SSL certificates are designed to secure your website seamlessly. However, there may be times when your SSL doesn't seem to work as expected. This article will help you identify the root cause and provide actionable solutions to get your SSL certificate functioning correctly.

Common SSL Issues and How to Fix Them

1. SSL Certificate Not Issued

If your SSL is not working, it may be that Cloudflare hasn’t issued the certificate yet.
Solution:

  • Log in to your Cloudflare dashboard.

  • Go to the SSL/TLS settings for your domain.

  • Check the status of your certificate in the Edge Certificates section.

    • If it says “Pending Issuance,” wait up to 24 hours for the certificate to be issued.

    • If the certificate is not issued after 24 hours, contact Cloudflare Support.

2. Misconfigured SSL Mode

Cloudflare provides multiple SSL modes, and selecting the wrong one can cause issues.
Solution:

  • In your Cloudflare dashboard, navigate to SSL/TLS Settings.

  • Ensure you have selected the correct SSL mode based on your setup:

    • Off: No encryption (not recommended).

    • Flexible: Encrypts traffic between the browser and Cloudflare (not the origin server).

    • Full: Encrypts traffic between the browser and the origin server with a self-signed certificate.

    • Full (strict): Encrypts traffic between the browser and origin with a valid SSL certificate (recommended).

  • If your origin server has a valid SSL certificate, always choose Full (strict).

3. Incorrect DNS Settings

If your DNS records are misconfigured, the SSL certificate might not work properly.
Solution:

  • Go to the DNS tab in your Cloudflare dashboard.

  • Ensure your records are correctly configured:

    • For your main domain, ensure the A record points to your server's IP address.

    • For subdomains, ensure the A record points to 93.127.200.83 or the CNAME points to kb.aiknowledgedesk.com (if using AI Knowledge Desk Custom Branding).

  • Make sure the Proxy Status is set to Proxied (orange cloud).

4. Mixed Content Errors

Mixed content occurs when some resources on your site (e.g., images, scripts) are loaded over HTTP instead of HTTPS.
Solution:

  • In your Cloudflare dashboard, go to the SSL/TLS settings.

  • Enable Automatic HTTPS Rewrites to redirect HTTP resources to HTTPS automatically.

  • Test your site using a tool like Why No Padlock to identify and fix any remaining insecure resources.

5. Cached Content Causing SSL Issues

Your browser or Cloudflare may be serving cached versions of your site that do not reflect the SSL changes.
Solution:

  • Clear your browser cache and cookies.

  • In the Cloudflare dashboard, navigate to the Caching tab.

    • Click Purge Everything to clear the cached content for your domain.

6. Expired or Incorrect Origin SSL Certificate

If you’re using Full (strict) mode, an expired or incorrectly installed SSL certificate on your origin server can cause issues.
Solution:

  • Check your origin server’s SSL certificate to ensure it is valid and properly installed.

  • Renew or reinstall the certificate if needed.

7. DNS Propagation Delays

If you recently changed your nameservers or DNS records, it may take time for the changes to propagate globally.
Solution:

  • Wait for up to 48 hours for DNS changes to fully propagate.

  • Use tools like DNS Checker to verify the status of your DNS changes.

Additional Tips

  • Enable Always Use HTTPS:

    • In the Cloudflare SSL/TLS settings, enable Always Use HTTPS to ensure all traffic is redirected to HTTPS.

  • Check for Firewall Blocking:

    • If your server’s firewall is blocking Cloudflare, you may need to whitelist Cloudflare’s IP ranges.

  • Use Cloudflare Diagnostic Center:

    • Go to the Cloudflare Diagnostic Center for automated checks and recommendations.

When to Contact Support

If you’ve tried all the above steps and your SSL is still not working, contact Cloudflare Support for further assistance. Provide them with:

  • Your domain name.

  • A detailed description of the issue.

  • Any error messages or screenshots.

Conclusion

SSL issues can be frustrating, but with these troubleshooting steps, you should be able to resolve most problems quickly. A properly configured SSL ensures your website is secure, improves user trust, and protects sensitive information. For additional support, feel free to reach out to AI Knowledge Desk’s customer support team.


Was this article helpful?

Can't find what you're looking for?

Our support team is here to help. Submit a ticket and we'll get back to you as soon as possible.

Add a Ticket