Site not accessible due to origin cloaking

This article provides a solution for when your Adobe Commerce on cloud infrastructure staging or production site storefront and/or Admin is not accessible.

Affected products and versions

  • Adobe Commerce on cloud infrastructure 2.3.x, 2.4.x

Issue

https:​//mydomain.com.c.<projectid>.magento.cloud/ is no longer accessible.

Steps to reproduce:

  1. Log in to your project.
  2. Click Access Project for a list of URLs and SSH.

Actual results:

Page fails to load with the following error:

NET::ERR_CERT_INVALID TLS alert, bad certificate (554):

Expected results:

Page loads successfully.

Cause

Origin Cloaking has been enabled, so the origin is no longer accessible directly.

Origin cloaking is a security feature that allows Adobe Commerce to block any non-Fastly traffic going to the cloud infrastructure (origin) to prevent DDoS attacks.

Solution

  • If your cloud site is live, switch to https://mydomain.com/.
  • If you have an active site (non-cloud), using the https://mydomain.com/ domain, set up a sub-domain mcprod.mydomain.com and update your Base URL to https://mcprod.mydomain.com instead, then point the DNS to Fastly.

Fastly origin cloaking enablement FAQ in our support knowledge base.

recommendation-more-help
8bd06ef0-b3d5-4137-b74e-d7b00485808a