Hi,
I have a site hosted in GCR, with CloudFlare managing the proxy and DNS. Recently the Google Managed SSL Cert failed to renew and has expired. (I suspect CF caused the renewal to fail)
I have since added CAA records and removed the CF proxies based on this info
here
I enabled the Certificate Manager, however there are no certs there.
My question - is it possible to force the renewal, or do I need to create a new google managed ssl cert?
Hi @906 ,
Welcome to Google Cloud Community!
There’s currently no explicit way to force a cert renewal. For this one, I would recommend reaching out to Google Cloud support so that they may deeply check your custom domain’s cert status and provide further help, which includes possibly discussing options such as granting a force renewal of your certification status (though this is something I can’t guarantee).
There’s a list of certificate or domain status that you can verify on your end per this documentation. If your certification status is either PROVISIONING_FAILED_PERMANENTLY or RENEWAL_FAILED, then yes, you’ll need to replace your existing SSL certificate by creating a new one. By default, Google Cloud strives to automatically renew your SSL cert, while your status is displayed as PROVISIONING.
Was this helpful? If so, please accept this answer as “Solution”. If you need additional assistance, reply here within 2 business days and I’ll be happy to help.