I have a lot of confusion with ssl certificates.
Do I need to activate the free ssl certificate that comes with infinityfree and also activate the cloudflare?
Or should I not install infinityfree ssl certificate and only activate ssl on cloudflare?
Please someone tell me the final steps to use ssl. Thank you very much.
If you are using cloudflare full (strict ) ssl mode then you gotta install a certificate in cpanel,
or else you can just enable cf ssl
Free SSL is needed to changed every 90 days but in cloudflare(managed ssl) renews in automatically.
I can see you have ecommerce website where full(strict) mode is needed, so get a free ssl from Infinity free and install it in Cpanel and Change your ssl setting in cf to full strict mode.
(Remember to change the ssl every 90 days or else visitors will get a error)
Then what should I do? do i remove the infinityfree certificate and set ssl on cloudflare only?
It’s not necessary to use Full Strict mode of Cloudflare.
Whenever it comes to security, you can easily install https via cloudflare, because that is more secure in terms of reverse proxy.
So my personal suggestion would be to go to Cloudflare for the stuff.
You will also get DNS editor there that would be very useful, you know that.
He is already using cf
If you want Full or strict, then you have to have InfinityFree SSL and CloudFlare SSL is not essential (but you can have it if you like). If you use Flexible mode, then InfinityFree SSL isn’t needed (but you can have it if you like but you’d need to renew every 90 days) and Cloudflare’s one would be ok as it’s auto-renewed.
I still do not understand. Should I remove the free certificate (letsencrypt) and configure ssl on cloudflare? if it is in cloudflare what is the option:
full
full strict
flex
Read my post.
If you want more secure website, you can have layered SSL security and that’s what CloudFlare’s Flexible, SSL (Full) and SSL(Full Strict) for.
But, if you have not know any of this, it is better to use InfinityFree’s tool for creating SSL because you dont want to mess up your website in just activating Full or Full Strict in CloudFlare . Dont bother make your life hard when there is easy option.
CloudFlare’s Flexible SSL works fine too. It is the most recommended option in CloudFlare SSL option.
So, what i meant was:
Have you ever used proxy/VPN? It’s same method with Cloudlare.
If you use Cloudflare & turn on its proxy for your (sub)domain (orange icon),this is your visitor route to your site:
Your visitor browser → Cloudflare server → Your hosting server
Maybe you can call it “transit”? 
This is your visitor route without Cloudflare (direct route):
Your visitor browser → Your hosting server
For security,your visitor route must use SSL.
But,what if you only activate it on your hosting server?
Direct route:
Your visitor browser -[SSL]-> Your hosting server
Cloudflare route:
Your visitor browser -[No SSL]-> Cloudflare server -[SSL]-> Your hosting server
So,it’s up to you.
If you confused about Cloudflare SSL settings:
Hey,Cloudflare. I don’t have SSL for my hosting server. I just want to use your SSL.
Your visitor route:
Your visitor browser -[SSL]-> Cloudflare server -[No SSL]-> Your hosting server = PASS
Your visitor browser -[SSL]-> Cloudflare server -[SSL (expired/not valid/valid)]-> Your hosting server = PASS
Hey,Cloudflare. I have a SSL certificate,but it isn’t valid (self-signed certificate).
So,don’t let my visitor pass to my site if my certificate expired or I forgot to install it on my hosting server.
Your visitor route:
Your visitor browser -[SSL]-> Cloudflare server -[No SSL/SSL (expired)]-> Your hosting server = NOT PASS/show Cloudflare error page
Your visitor browser -[SSL]-> Cloudflare server -[SSL (not valid/valid)]-> Your hosting server = PASS
Hey,Cloudflare. I have a valid SSL certificate.
So,don’t let my visitor pass to my site if my certificate not valid,expired,or I forgot to install it on my hosting server.
Your visitor route:
Your visitor browser -[SSL]-> Cloudflare server -[No SSL/SSL (expired/not valid)]-> Your hosting server = NOT PASS
Your visitor browser -[SSL]-> Cloudflare server -[SSL (valid)]-> Your hosting server = PASS
This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.