SSL for SaaS if users are already on Cloudflare?
We're trying to automate the flow for our customers to connect their own domain name to our platform, for which we use "SSL for SaaS" with Cloudflare.
Following this article: https://blog.cloudflare.com/introducing-ssl-for-saas/ we use the dig command ($ dig CNAME +short support.yourcustomer.site) to verify that our users have correctly added the CNAME.
The problem we're facing, is that if our users are already using Cloudflare, this command returns nothing. We also cannot scan their DNS as CF converts CNAMEs to CF's own IPS, so we're struggling to figure out how to verify the DNS have been setup correctly before we make a request to the CF API to generate an SSL for them.
Any suggestions for this?
Following this article: https://blog.cloudflare.com/introducing-ssl-for-saas/ we use the dig command ($ dig CNAME +short support.yourcustomer.site) to verify that our users have correctly added the CNAME.
The problem we're facing, is that if our users are already using Cloudflare, this command returns nothing. We also cannot scan their DNS as CF converts CNAMEs to CF's own IPS, so we're struggling to figure out how to verify the DNS have been setup correctly before we make a request to the CF API to generate an SSL for them.
Any suggestions for this?
The Cloudflare Blog
If you’re running a SaaS company, you know how important it is that your application is performant, highly available, and hardened against attack.
