Setting up NGINX to use TLS Authenticated Origin Pulls

For authenticated origin pulls to work correctly you must first be using Full SSL, and have access to the server side SSL configuration, If you are using NGINX then you will want to download the Cloudflare certificate  In the blog post  and put that in a file, for example in /etc/nginx/certs/cloudflare.crt

Then in the SSL configuration of your site, you will want to add these two lines.

 

    ssl_client_certificate /etc/nginx/certs/cloudflare.crt;
    ssl_verify_client on;


Still not finding what you need?

The CloudFlare team is here to help. 95% of questions can be answered using the search tool, but if you can’t find what you need, submit a support request.

Powered by Zendesk