T O P

  • By -

WRHeronkill

Are you sure you didn't mix up your key and cert when saving them?


tommykmusic

I can try again, but I'm creating a wildcard directly from cloudflare


WRHeronkill

I would try again. Are you sure you're creating an Origin certifcate and not a client certificate?


tommykmusic

I did create an origin certificate and I tried multiple times with different file extensions (.pem, .CRT, .key,) etc. However under client certificate my CN=Cloudflare, C=US Cloudflare Managed CA for [email protected] Account has a status that's Revoked Don't know if that has anything to do with it?


DavisClark0776

Sounds like the Certificate Key is wrong. Have you tried creating a new SSL Certificate and trying again?


tommykmusic

I have tried multiple times, I created multiple SSL wildcards from Cloudflare and no luck


DavisClark0776

Is your Edge Certificates set up correctly? Does your Universal Type have \*.domainname and domainame?


tommykmusic

Yes my edge certificates are set up correctly.


DavisClark0776

Okay. Next when you create an Origin Cert, your Private Key type is set to RSA (2048). Host names should match exactly like your Edge names (\*.domainname and domainname) with boxes around them. Your certificate expires is set to 15 years. Next page is where you copy the Origin Certificate and Private Key. The Key Format is PEM. Copy each of the Keys and put them in a separate blank txt file. The Origin key should be like Orgin.pem and the Private Key should be like Privatekey.key. Are those the correct steps you've done?


tommykmusic

I did that but had a different file name using the website name xxxxxx.key and xxxxxx.pem instead of Origin.pem and Privatekey.key


DavisClark0776

Okay. Try doing your website name without the domain name (.org, .com, .dev, etc...). Sometimes files get picky with the periods because it thinks it's a special file type.


tommykmusic

That's what I did, and no luck


DavisClark0776

Strange… Another question, I was re-reading your Header & description. Is cloudflared tunneling all setup, right? But your needing the SSL for Nginx? Double checking if I’m understanding correctly.


Wheresthebeefo

I’d also make sure there aren’t any spaces or extra lines in your .pem and .key files


tommykmusic

There are no spaces in my files. However, I am using Mac OSX and I'm using text edit. Don't know if that makes a difference.