diff --git a/src/content/docs/cloudflare-one/applications/non-http/infrastructure-apps.mdx b/src/content/docs/cloudflare-one/applications/non-http/infrastructure-apps.mdx
index d757466c2d32d86..f6c49121e82377e 100644
--- a/src/content/docs/cloudflare-one/applications/non-http/infrastructure-apps.mdx
+++ b/src/content/docs/cloudflare-one/applications/non-http/infrastructure-apps.mdx
@@ -6,8 +6,6 @@ sidebar:
badge:
variant: tip
text: New
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Badge, Details, Tabs, TabItem, Render } from "~/components";
diff --git a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/automated-deployment.mdx b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/automated-deployment.mdx
index 56fa0587ec0984c..231663a2225a97d 100644
--- a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/automated-deployment.mdx
+++ b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/automated-deployment.mdx
@@ -5,8 +5,6 @@ sidebar:
order: 1
head: []
description: Automatically deploy a root certificate on desktop devices.
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Details } from "~/components";
diff --git a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/custom-certificate.mdx b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/custom-certificate.mdx
index f4f1d7666f3d4cc..84993080cc76cb5 100644
--- a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/custom-certificate.mdx
+++ b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/custom-certificate.mdx
@@ -6,8 +6,6 @@ sidebar:
head: []
description: Configure WARP to use a custom root certificate instead of the
Cloudflare certificate.
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Render, Tabs, TabItem } from "~/components";
diff --git a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/index.mdx b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/index.mdx
index 7c55150f7e87771..22f07462eb1d870 100644
--- a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/index.mdx
+++ b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/index.mdx
@@ -3,8 +3,6 @@ pcx_content_type: get-started
title: User-side certificates
sidebar:
order: 2
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Tabs, TabItem } from "~/components";
@@ -13,7 +11,7 @@ Advanced security features such as [HTTPS traffic inspection](/cloudflare-one/po
Zero Trust [generates a unique root CA](#generate-a-cloudflare-root-certificate) for each account and deploys it across the Cloudflare global network. Alternatively, Enterprise users can upload and deploy their own [custom certificate](/cloudflare-one/connections/connect-devices/user-side-certificates/custom-certificate/).
-:::caution[Default WARP certificate expired on 2025-02-02]
+:::caution[Default certificate expired on 2025-02-02]
The default Cloudflare certificate expired on 2025-02-02 at 16:05 UTC.
Review how this change impacts certificate propagation to your end-user devices and how to address browser issues in [Troubleshooting](/cloudflare-one/faq/troubleshooting/#as-of-february-2-2025-my-end-user-devices-browser-is-returning-a-your-connection-is-not-private-warning).
diff --git a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/manual-deployment.mdx b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/manual-deployment.mdx
index 043276202e60459..2d4a765fadedb29 100644
--- a/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/manual-deployment.mdx
+++ b/src/content/docs/cloudflare-one/connections/connect-devices/user-side-certificates/manual-deployment.mdx
@@ -6,8 +6,6 @@ sidebar:
head: []
description: Manually add a Cloudflare certificate to mobile devices and
individual applications.
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Details, Render, TabItem, Tabs } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/browser-isolation/index.mdx b/src/content/docs/cloudflare-one/policies/browser-isolation/index.mdx
index 269d8710d4bc0b9..aa605a5e7bd4194 100644
--- a/src/content/docs/cloudflare-one/policies/browser-isolation/index.mdx
+++ b/src/content/docs/cloudflare-one/policies/browser-isolation/index.mdx
@@ -3,8 +3,6 @@ pcx_content_type: concept
title: Browser Isolation
sidebar:
order: 5
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
:::note
diff --git a/src/content/docs/cloudflare-one/policies/data-loss-prevention/index.mdx b/src/content/docs/cloudflare-one/policies/data-loss-prevention/index.mdx
index 6bf35c36ad26a74..b21b5af7cec2cda 100644
--- a/src/content/docs/cloudflare-one/policies/data-loss-prevention/index.mdx
+++ b/src/content/docs/cloudflare-one/policies/data-loss-prevention/index.mdx
@@ -3,8 +3,6 @@ pcx_content_type: concept
title: Data Loss Prevention
sidebar:
order: 5
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { GlossaryDefinition } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/gateway/block-page.mdx b/src/content/docs/cloudflare-one/policies/gateway/block-page.mdx
index 3972268233fc834..56e44df0b2510f7 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/block-page.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/block-page.mdx
@@ -3,8 +3,6 @@ pcx_content_type: how-to
title: Block page
sidebar:
order: 14
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Render } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/antivirus-scanning.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/antivirus-scanning.mdx
index f695b6eafa17b09..60ad78fef086d4f 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/antivirus-scanning.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/antivirus-scanning.mdx
@@ -3,8 +3,6 @@ pcx_content_type: concept
title: AV scanning
sidebar:
order: 5
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Render, Details } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/common-policies.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/common-policies.mdx
index 37af48e56b866a2..1f5ce3f3e11d213 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/common-policies.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/common-policies.mdx
@@ -6,8 +6,6 @@ sidebar:
head:
- tag: title
content: Common HTTP policies
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Render, Tabs, TabItem } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/file-sandboxing.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/file-sandboxing.mdx
index da8b86c2279a2b4..53d62923820cb2d 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/file-sandboxing.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/file-sandboxing.mdx
@@ -3,8 +3,6 @@ pcx_content_type: concept
title: File sandboxing
sidebar:
order: 6
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Render, Details } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/http3.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/http3.mdx
index 0bc565de7f94bc0..ac001f1b980d90e 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/http3.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/http3.mdx
@@ -3,8 +3,6 @@ pcx_content_type: concept
title: HTTP/3 inspection
sidebar:
order: 3
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Details } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/index.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/index.mdx
index b14951779ed709f..75c3eab87e7d0c7 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/index.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/index.mdx
@@ -3,8 +3,6 @@ pcx_content_type: configuration
title: HTTP policies
sidebar:
order: 4
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import { Details, InlineBadge, Render } from "~/components";
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/tenant-control.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/tenant-control.mdx
index 7f564d15eb9f7e8..255cd950c389862 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/tenant-control.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/tenant-control.mdx
@@ -3,8 +3,6 @@ pcx_content_type: how-to
title: Tenant control
sidebar:
order: 4
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
With Gateway tenant control, you can allow your users access to corporate SaaS applications while blocking access to personal applications. This helps prevent the loss of sensitive or confidential data from a corporate network.
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/tls-decryption.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/tls-decryption.mdx
index 979c665db33a000..b4139460c024a67 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/tls-decryption.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/tls-decryption.mdx
@@ -3,8 +3,6 @@ pcx_content_type: concept
title: TLS decryption
sidebar:
order: 2
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
import {
diff --git a/src/content/docs/cloudflare-one/policies/gateway/http-policies/websocket.mdx b/src/content/docs/cloudflare-one/policies/gateway/http-policies/websocket.mdx
index 617de4457d91d88..e0cba0a7dd2b778 100644
--- a/src/content/docs/cloudflare-one/policies/gateway/http-policies/websocket.mdx
+++ b/src/content/docs/cloudflare-one/policies/gateway/http-policies/websocket.mdx
@@ -3,12 +3,10 @@ pcx_content_type: how-to
title: WebSocket traffic
sidebar:
order: 7
-banner:
- content: The default global Cloudflare root certificate expired on 2025-02-02. If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors.
---
Gateway does not inspect or log [WebSocket](https://datatracker.ietf.org/doc/html/rfc6455) traffic. Instead, Gateway will only log the HTTP details used to make the WebSocket connection, as well as [network session information](/logs/reference/log-fields/account/zero_trust_network_sessions/). To filter your WebSocket traffic, create a policy with the `101` HTTP response code.
-| Selector | Operator | Value | Action |
-| ------------- | -------- | ----------------------- | ------ |
-| HTTP Response | is | 101 SWITCHING_PROTOCOLS | Allow |
+| Selector | Operator | Value | Action |
+| ------------- | -------- | ------------------------- | ------ |
+| HTTP Response | is | _101 SWITCHING_PROTOCOLS_ | Allow |