Error 526: Invalid SSL certificate

The HTTP Error Response Code 526 occurs when Cloudflare is unable to successfully validate the SSL certificate on the origin web server and the Cloudflare SSL configuration on the website is set to "Full SSL (Strict)". 

Server administrators should review their SSL certificates to ensure that they meet all of the following validation requirements:

  • The certificate expiration date has not already passed
  • The certificate is signed by a certificate authority (such as GlobalSign, Verisign, GeoTrust, Comodo, etc) and is not a self-signed SSL certificate. 
  • The requested domain name (hostname) is in the Common Name or Subject Alternative Name configuration of the certificate. (If you've added a CNAME record for the hostname on Cloudflare, the Common Name or SAN may also match the CNAME target.)


If the intent is to have Cloudflare connect to the origin using SSL and the origin is configured to use a self-signed certificate, the domain needs to be configured to use Full SSL and not Full SSL (Strict) in the Cloudflare settings.  

Still not finding what you need?

The Cloudflare team is here to help. 95% of questions can be answered using the search tool, but if you can’t find what you need, submit a support request.

Powered by Zendesk