Monitor Expiration Date
Regularly check the expiration date of your certificate in the Certificates section.
Obtain a New Certificate
Before the expiration date, request a new SSL certificate from your Certificate Authority (CA).
Upload the New Certificate
Follow the steps above to upload the new SSL certificate and private key.
Verify and Save
Ensure the new certificate is valid, then click Save to apply the changes.
Confirm Successful Update
Review the Certificates section to verify that the new certificate is active and that the expiration date has been updated.
This article provides an overview of the options for managing SSL Certificates for your domains.
When configuring a custom domain, Automatic Certificate Management is enabled by default. You can also opt for Self-Managed Certificates. If you disable the active self-managed certificate, the system will automatically revert to Automatic Certificate Management to maintain security.
By default, SSL/TLS certificates are automatically issued, renewed, and deployed. This guarantees that your domains remain secure without any manual effort.
Self-managed certificates are suitable for:
Origin Servers: Configuring SSL/TLS for secure communication between our service and your DNS provider.
Custom Certificates: Providing your own certificates to meet specific requirements.
This article provides an overview of supported TLS/SSL certificates.
When setting up a reverse proxy with self-managed certificates to connect to the TF Platform, it's crucial to ensure that you use a supported TLS version and cipher suite. The TLS handshake, which is the communication between the server and client, specifies the TLS version and cipher suite. Using an unsupported version could lead to failure.
TLS_AES_128_GCM_SHA256
TLS_AES_256_GCM_SHA384
TLS_CHACHA20_POLY1305_SHA256
Locate and select the Certificates section.
Upload the Certificate
Click on the Upload Certificate option.
Input Certificate and Key
Enter SSL Certificate and Private Key:
Ensure your SSL certificate file is in PEM format (typically a .crt or .pem file).
Ensure your private key file is in PEM format (usually a .key file).
Copy and Paste Contents:
Copy the contents of your SSL certificate and paste them into the Certificate field.
Copy the contents of your private key and paste them into the Private Key field.
Save the Certificate
Click the Save button to upload the certificate
Review Certificate details
Common Name: A name for easy identification.
Issuer: The organization that issued the certificate.
Valid From: The start date of the certificate's validity.
Valid to: The certificate's expiration date.
Covered Domains: Domains secured by the certificate.
Thumbprint: A unique identifier for quick reference.
Activate the Certificate
After saving, ensure the certificate is activated by clicking the Activate button (if applicable) in the Certificates section. This step is essential for enabling secure connections using the newly uploaded certificate.