Skip to content

Commit 5b6a65c

Browse files
RebeccaTamachiroOxyjun
RebeccaTamachiro
and
Oxyjun
authored
[SSL] Explain multiple CDN limitation and create caveats section (#25391)
* Explain why not multiple CDN and group under new caveats section * Apply suggestion from code review Co-authored-by: Jun Lee <[email protected]> --------- Co-authored-by: Jun Lee <[email protected]>
1 parent 54865dd commit 5b6a65c

File tree

1 file changed

+6
-4
lines changed

1 file changed

+6
-4
lines changed

src/content/docs/ssl/edge-certificates/changing-dcv-method/methods/delegated-dcv.mdx

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -30,13 +30,15 @@ You should use Delegated DCV when all of the following conditions are true:
3030
- Your zone is using a [partial DNS setup](/dns/zone-setups/partial-setup/).
3131
- Cloudflare is not already [performing DCV automatically](/ssl/edge-certificates/changing-dcv-method/).
3232
- Your zone is using an [Advanced certificate](/ssl/edge-certificates/advanced-certificate-manager/).
33-
- Your zone is not using multiple CDN providers.
3433
- The Certificate Authority is either Google Trust Services, SSL.com, or Let's Encrypt
3534

36-
:::note[Delegated DCV and origin certificates]
35+
### Aspects to keep in mind
3736

38-
As explained in the [announcement blog post](https://blog.cloudflare.com/introducing-dcv-delegation/), currently, you can only delegate DCV to one provider at a time. If you also issue publicly trusted certificates for the same hostname for your [origin server](/ssl/concepts/#origin-certificate), this will no longer be possible. You can use [Cloudflare origin CA certificates](/ssl/origin-configuration/origin-ca/) instead.
39-
:::
37+
As explained in the [announcement blog post](https://blog.cloudflare.com/introducing-dcv-delegation/), currently, you can only delegate DCV to one provider at a time. This means:
38+
39+
- If you also issue publicly trusted certificates for the same hostname for your [origin server](/ssl/concepts/#origin-certificate), this will no longer be possible. You can use [Cloudflare origin CA certificates](/ssl/origin-configuration/origin-ca/) instead.
40+
41+
- If your zone is using multiple CDN providers, you might want to use an alternative [method](/ssl/edge-certificates/changing-dcv-method/methods/). This is because, once the DCV delegation is configured for Cloudflare, only Cloudflare will be able to perform DCV on your behalf, blocking your external CDN providers from doing the same.
4042

4143
## Setup
4244

0 commit comments

Comments
 (0)