From c6b4fe3087b583ec93eb760b4340dcead8395f94 Mon Sep 17 00:00:00 2001
From: Nic <123965403+ngayerie@users.noreply.github.com>
Date: Tue, 5 Aug 2025 17:18:54 +0200
Subject: [PATCH 1/3] [Error] Update error-1016.mdx

SPM-2107
---
 .../cloudflare-1xxx-errors/error-1016.mdx     | 22 ++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx b/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
index 1a8012c1670ef1..66a7a9b2473a75 100644
--- a/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
+++ b/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
@@ -16,7 +16,6 @@ Common causes for error `1016` are:
 - A CNAME record in the Cloudflare DNS points to an unresolvable external domain.
 - The origin hostnames (CNAMEs) in your Cloudflare [Load Balancer](/load-balancing/) default, region, and fallback pools are unresolvable. Use a fallback pool configured with an origin IP as a backup in case all other pools are unavailable.
 - When creating a Spectrum app with a CNAME origin, you need first to create a CNAME on the Cloudflare DNS side that points to the origin. Please see [Spectrum CNAME origins](/spectrum/get-started/#create-a-spectrum-application-using-a-cname-record) for more details.
-- There is no DNS record for the hostname in the Cloudflare for SaaS target zone.
 - There is no DNS record for the hostname in the target [Partial (CNAME) setup zone](/dns/zone-setups/partial-setup/) of a Workers subrequest ([Fetch API](/workers/runtime-apis/fetch/)).
 
 ### Resolution
@@ -26,3 +25,24 @@ To resolve error `1016`:
 1. Verify your Cloudflare DNS settings include an A record that points to a valid IP address that resolves via a [DNS lookup tool](https://dnschecker.org/).
 2. For a CNAME record pointing to a different domain, ensure that the target domain resolves via a [DNS lookup tool](https://dnschecker.org/).
 3. For a Workers subrequest to a Partial (CNAME) setup zone, ensure that the hostname exists on the Cloudflare zone (and not only at the authoritative DNS).
+
+## Error 1016 in the context of SSL for SaaS
+
+Cloudflare returns a 1016 error when the [custom hostname](/cloudflare-for-platforms/cloudflare-for-saas/domain-support/create-custom-hostnames/) cannot be routed or proxied.
+
+### Common cause
+
+- Custom Hostname ownership validation is not complete. 
+- Fallback Origin is not [correctly set](/cloudflare-for-platforms/cloudflare-for-saas/start/getting-started/#1-create-fallback-origin). 
+- A Wildcard Custom Hostname has been created, but the requested hostname is associated with a domain that exists in Cloudflare as a standalone zone. 
+- There is no DNS record for the hostname in the Cloudflare for SaaS target zone.
+
+### Resolution
+
+1. To check validation status, run an API call to [search for a certificate by hostname](/cloudflare-for-platforms/cloudflare-for-saas/start/common-api-calls/) and check the verification error field: `"verification_errors": ["custom hostname does not CNAME to this zone."]`. The error will be resolved once the status is `active`.
+2. Confirm that you have created a DNS record for the [fallback origin](/cloudflare-for-platforms/cloudflare-for-saas/start/getting-started/) and also set the fallback origin.
+3. The [hostname priority](/ssl/reference/certificate-and-hostname-priority/#hostname-priority) for the standalone zone will take precedence over the wildcard custom hostname. This behavior applies even if there is no DNS record for this standalone zone hostname. 
+You'll need to use a specific hostname instead of a wildcard for the custom hostname, or [remove the standalone zone from Cloudflare](/fundamentals/manage-domains/remove-domain/).
+4. Make sure that each hostname that needs to be served by the Cloudflare for SaaS parent zone has been added as an individual Custom Hostname and have the status `active`.
+
+

From 65760d1d736ae94eefc47d7217454550c6a15918 Mon Sep 17 00:00:00 2001
From: Rebecca Tamachiro <62246989+RebeccaTamachiro@users.noreply.github.com>
Date: Fri, 8 Aug 2025 15:32:42 +0100
Subject: [PATCH 2/3] Adjust capitalization and remove extra line break

---
 .../cloudflare-1xxx-errors/error-1016.mdx           | 13 ++++++-------
 1 file changed, 6 insertions(+), 7 deletions(-)

diff --git a/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx b/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
index 66a7a9b2473a75..92da57e63e8588 100644
--- a/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
+++ b/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
@@ -28,21 +28,20 @@ To resolve error `1016`:
 
 ## Error 1016 in the context of SSL for SaaS
 
-Cloudflare returns a 1016 error when the [custom hostname](/cloudflare-for-platforms/cloudflare-for-saas/domain-support/create-custom-hostnames/) cannot be routed or proxied.
+Cloudflare returns a `1016` error when the [custom hostname](/cloudflare-for-platforms/cloudflare-for-saas/domain-support/create-custom-hostnames/) cannot be routed or proxied.
 
 ### Common cause
 
-- Custom Hostname ownership validation is not complete. 
-- Fallback Origin is not [correctly set](/cloudflare-for-platforms/cloudflare-for-saas/start/getting-started/#1-create-fallback-origin). 
-- A Wildcard Custom Hostname has been created, but the requested hostname is associated with a domain that exists in Cloudflare as a standalone zone. 
+- Custom hostname ownership validation is not complete. 
+- Fallback origin is not [correctly set](/cloudflare-for-platforms/cloudflare-for-saas/start/getting-started/#1-create-fallback-origin). 
+- A wildcard custom hostname has been created, but the requested hostname is associated with a domain that exists in Cloudflare as a standalone zone. 
 - There is no DNS record for the hostname in the Cloudflare for SaaS target zone.
 
 ### Resolution
 
 1. To check validation status, run an API call to [search for a certificate by hostname](/cloudflare-for-platforms/cloudflare-for-saas/start/common-api-calls/) and check the verification error field: `"verification_errors": ["custom hostname does not CNAME to this zone."]`. The error will be resolved once the status is `active`.
 2. Confirm that you have created a DNS record for the [fallback origin](/cloudflare-for-platforms/cloudflare-for-saas/start/getting-started/) and also set the fallback origin.
-3. The [hostname priority](/ssl/reference/certificate-and-hostname-priority/#hostname-priority) for the standalone zone will take precedence over the wildcard custom hostname. This behavior applies even if there is no DNS record for this standalone zone hostname. 
-You'll need to use a specific hostname instead of a wildcard for the custom hostname, or [remove the standalone zone from Cloudflare](/fundamentals/manage-domains/remove-domain/).
-4. Make sure that each hostname that needs to be served by the Cloudflare for SaaS parent zone has been added as an individual Custom Hostname and have the status `active`.
+3. The [hostname priority](/ssl/reference/certificate-and-hostname-priority/#hostname-priority) for the standalone zone will take precedence over the wildcard custom hostname. This behavior applies even if there is no DNS record for this standalone zone hostname. Use a specific hostname instead of a wildcard or [remove the standalone zone from Cloudflare](/fundamentals/manage-domains/remove-domain/).
+4. Make sure that each hostname that needs to be served by the Cloudflare for SaaS parent zone has been added as an individual custom hostname and have the status `active`.
 
 

From 82a90b1aa58ea5bedc5a88f990ffa27ab167a6dc Mon Sep 17 00:00:00 2001
From: Rebecca Tamachiro <62246989+RebeccaTamachiro@users.noreply.github.com>
Date: Fri, 8 Aug 2025 15:42:25 +0100
Subject: [PATCH 3/3] Update
 src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx

---
 .../http-status-codes/cloudflare-1xxx-errors/error-1016.mdx     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx b/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
index 92da57e63e8588..8e97e197140278 100644
--- a/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
+++ b/src/content/docs/support/troubleshooting/http-status-codes/cloudflare-1xxx-errors/error-1016.mdx
@@ -42,6 +42,6 @@ Cloudflare returns a `1016` error when the [custom hostname](/cloudflare-for-pla
 1. To check validation status, run an API call to [search for a certificate by hostname](/cloudflare-for-platforms/cloudflare-for-saas/start/common-api-calls/) and check the verification error field: `"verification_errors": ["custom hostname does not CNAME to this zone."]`. The error will be resolved once the status is `active`.
 2. Confirm that you have created a DNS record for the [fallback origin](/cloudflare-for-platforms/cloudflare-for-saas/start/getting-started/) and also set the fallback origin.
 3. The [hostname priority](/ssl/reference/certificate-and-hostname-priority/#hostname-priority) for the standalone zone will take precedence over the wildcard custom hostname. This behavior applies even if there is no DNS record for this standalone zone hostname. Use a specific hostname instead of a wildcard or [remove the standalone zone from Cloudflare](/fundamentals/manage-domains/remove-domain/).
-4. Make sure that each hostname that needs to be served by the Cloudflare for SaaS parent zone has been added as an individual custom hostname and have the status `active`.
+4. Make sure that each hostname that needs to be served by the Cloudflare for SaaS parent zone has been added as an individual custom hostname and has the status `active`.