Cloudflare offers your domain a couple of settings related to SSL and TLS. This article covers the frequently asked questions our Support Team sees.
Almost. You’ll need, at the bare minimum, a self-signed certificate which we provide. Head over to your SSL settings per site in the Control Panel to generate a self-signed certificate.
Once you have those generated, you’ll need to head over to Cloudflare’s Dashboard and select the Full setting to create a fully secure and encrypted connection to your site.
Yes, you can. A subdomain like
sub.sub.example.com will work with Cloudflare just fine, but you can’t use a self-signed certificate for that. Cloudflare does not support that. You’ll need to purchase a certificate for your site to make this work.
Head on over to the Control Panel of your site and click on the SSL settings to go to the SSL ordering screen.
Yes! Cloudflare offers an option that will rewrite your internal content, images for example, that are served over
http while your site is served over
https. Mixing the two will basically deliver insecure content inside a secure container and thus rendering it insecure again.
Luckily, Cloudflare offers a super simple solution for this. Head on over to your SSL/TLS settings tab and turn this option on:
Yes it can. There’s are two fixes for this. The first option is a half-measure, but it might just be the fix for you. The second option is best solution.
1. Navigate to your SSL/TLS tab of your site in your Cloudflare dashboard and change the following setting to the minimum value of TLS 1.2
Be sure to also turn on this option:
2. Upgrade your Cloudflare free plan to a Cloudflare Pro plan.
Be sure to check out our article on how to add Cloudflare to your (WordPress) site if you’ve not yet added Cloudflare to your site.
Give us your feedback on this article
Did this help you?
We’ve launched Accelerated Domains!
Accelerated Domains is a service that greatly improves and optimizes your site on these four areas: Performance Scalability, Security, Carbon footprint.