SSL Error on Subdomain

[jpx3m.com]

Hi again. I created a subdomain to create a separate wordpress installation and installed the ssl certificate from zerossl but it is still now opening. I get this error message:

 

Ahoy! You're seeing this page because you've reached a website on our service that's not configured to accept secure connections (HTTPS).

If you're a visitor, try visiting this site again, removing the "https" in front of the website domain. Please note that your connection to this user's website will not be secure.

If you're the webmaster of this site, we recommend you take a few minutes to set up SSL so your visitors can connect securely. You can do this from your control panel. If you need assistance, please visit our support forums or Wiki.

Thanks for choosing HelioHost!

Sincerely,

 

To add I have traffic routed from cloudflare and added the A record to point to tommy's IP.

Please excuse my lots of questions.

 

Thanks and God Bless!

[Sn1F3rt]

And that's the thing. Both Cloudflare SSL and the SSL installed on Tommy cannot live together. This is because Cloudflare already provides you a Flexible SSL and you do not have any need of installing another one. To solve the issue go ahead and remove the Certificates for that particular subdomain from SSL Wizard in cPanel and it should start working again in a while.

[jpx3m.com]

And that's the thing. Both Cloudflare SSL and the SSL installed on Tommy cannot live together. This is because Cloudflare already provides you a Flexible SSL and you do not have any need of installing another one. To solve the issue go ahead and remove the Certificates for that particular subdomain from SSL Wizard in cPanel and it should start working again in a while.

Thank you for the response. Is this subdomain issue only because the ssl for the primary domain works... and i added the ssl for the subdomain in the cpanel after seeing that message.

 

Should I remove all ssl on my cpanel altogether?

Edited May 9, 2020 by jpx3m.com

[Sn1F3rt]

Yeah you can do that ... If your domain is served by Cloudflare then you automatically get a wildcard SSL for your root domain as well as all subdomains. However, remove the SSL only for the domains served by Cloudflare.

[wolstech]

The officially supported configuration is to not use cloudflare at all. You mention being on tommy, so autossl could handle the certs for you, however autossl and CF are incompatible with each other.

 

Also, keep in mind that the flexible option on CF is a terrible idea that shouldn't even exist from a security standpoint. It leaves the CF to heliohost part of the connection unencrypted despite telling the user they have a secure connection (which they do...only up to CF).