Site not accessible due to origin cloaking
Last update: March 21, 2025
- Topics:
- Products
CREATED FOR:
- Developer
This article provides a solution for when your Adobe Commerce on cloud infrastructure staging or production site storefront and/or Admin is not accessible.
Affected products and versions
- Adobe Commerce on cloud infrastructure 2.3.x, 2.4.x
Issue
https://mydomain.com.c.<projectid>.magento.cloud/ is no longer accessible.
Steps to reproduce:
- Log in to your project.
- Click Access Project for a list of URLs and SSH.
Actual results:
Page fails to load with the following error:
NET::ERR_CERT_INVALID TLS alert, bad certificate (554):
Expected results:
Page loads successfully.
Cause
Origin Cloaking has been enabled, so the origin is no longer accessible directly.
Origin cloaking is a security feature that allows Adobe Commerce to block any non-Fastly traffic going to the cloud infrastructure (origin) to prevent DDoS attacks.
Solution
- If your cloud site is live, switch to https://mydomain.com/.
- If you have an active site (non-cloud), using the https://mydomain.com/ domain, set up a sub-domain
mcprod.mydomain.com
and update your Base URL to https://mcprod.mydomain.com instead, then point the DNS to Fastly.
Related reading
- Fastly origin cloaking enablement FAQ in our support knowledge base
- Checklist for setting up a new domain in our support knowledge base
recommendation-more-help
8bd06ef0-b3d5-4137-b74e-d7b00485808a