General

How to Add SSL Certificate in My WordPress Website?

How to Add SSL Certificate in My WordPress Website?

capture-minWordPress helps users to create websites and blogs dynamic. It is an open source Content Management System (CMS). It helps the user to update, customize, and manage the website from its back-end CMS. It’s a most popular blogging system.

The main purpose of using SSL is to securely do transactions, logins, browsing social media sites, and transferring data. SSL certificate helps site visitors from eavesdropping. SSL certificate helps users in establishing a secure connection with HTTPS for exchanging information between browser and Server. SSL is commonly known as “Secure Sockets Layer”.

Mostly HTTPS is important for e-commerce websites.

The following image shows the warning message to the user from connecting to the site who’s HTTPS acts to be a server but its certificate doesn’t match.

Why HTTP and SSL necessary?

If candidates are collecting payment information of e-commerce websites then they need SSL certificate. Users who pay through websites likes Stripe, PayPal Pro, and Authorize.net etc need a secure connection using SSL. By using HTTPS and SSL candidate can improve their website SEO Ranking. The e-commerce websites names that already use SSL certificate are as OptinMonster, Soliloquy, and Envira Gallery.

The following image shows a website name which is secured by HTTPS and SSL in WordPress:

Prerequisites for using HTTPS/SSL on a WordPress website

  • For using SSL in WordPress users need to buy SSL certificate.
  • You can buy it from SSL2BUY which sells the certificate in between $8.67 to $835.
  • Once you purchase SSL Certificate for your website, you have to install it in your website hosting server.

Steps to setup WordPress to use SSL and HTTPS

If the user need HTTPS everywhere on their website then they need to upgrade their website URL. Following are the steps with the help of which user can update their website URL:

  • Users have to go to settings.
  • After that users must go to general and update their WordPress and website URL address fields.

Users can update their website URL by writing below code in their .htaccess file:

 

<IfModule mod_rewrite.c>

RewriteEngine On

RewriteCond %{ SERVER_PORT} 80

RewriteRule ^ (.*) $ https: //www. sitename.com/$1 [R, L]

</IfModule>

 

If users are on Nginx server then they have to add the following code to redirect from HTTP to HTTPS:

Server {

Listen 80;

Server_name yoursitename.com www. yoursitename.com

Return 301; //yoursitename.com$request_uri;

}

 

But if user wants to add SSL and HTTPS on their WordPress admin are or login pages they should configure SSL in wp-config.php file.

By adding following code before the line “That’s all, stop editing!” in their wp-config.php file. The below code works for single as well as multiple sites.

 

Define (‘FORCE_SSL_DOMAIN’, true);

 

Steps to setup SSL and WordPress HTTPS on exclusive pages

If the user wants to add HTTPS and SSL on a specific page on their website then they need a plugin called WordPress HTTPS (SSL).

Following are the steps that user need to follow:

  • Firstly the candidates need to install and activate the WordPress HTTPS (SSL) plugin.
  • This plugin will add new menu items named as HTTPS in users WordPress admin. Users can view these setting by clicking on plugin’s setting page
  • First option of the setting page mostly asked about the SSL host. Basically, it contains a domain name. If the user configures site on sub-domain then SSL certificate contains the main domain and user have to enter the main domain name. Webhost provide SSL certificate in this case user have to write the host information instead of writing domain name.
  • In case if the candidate is using non-traditional SSL host then they have to enter a different port number in the port field instead of writing the traditional port number.
  • From Force SSL Administration setting if the candidate needs to use HTTPS on all domain area pages user just simply check the checkbox and secure user traffic to their WordPress Domain.
  • Next option forces SSL Exclusive, by checking this checkbox candidate will only use SSL on those pages where force SSL option is checked and rest of the traffic will go through normal HTTP URL. This option will only work on specific pages like a shopping cart, checkout, user account pages etc.
  • After that click on the save changes button and store plugin settings.
  • If a user wants to use HTTPS on specific pages, then they need to edit those pages and check force SSL checkbox.

To check whether user website is HTTPS secure or not they have to open their website on all browsers and check if green light appears or not. Following images shows that how user comes to know about their website is https secure.

Steps to setup SSL and WordPress HTTPS using CloudFlare

By following below steps users comes to know how CloudFlare helps to make website https secure:

  • Firstly candidate should have their CloudFlare Pro account. It cost $20 a month for one domain and $5 for additional domains. By using this pro account user will get Web Application Firewall for WordPress and for other apps which is a big benefit. While using SSL users should enable SPDY for making website speedy.
  • After login to the Pro account by entering login credentials the user must log into their Cloudflare dashboard and Go to the ‘Certificates’ section and choose “Add Custom SSL”
  • After choose “Add Custom SSL Certificate” A window will open asking for your key, certificate and bundle information. Enter in the appropriate information and press on the “Add” button.
  • After that user should login their WordPress website and install https plug-in. while configuring the plug-in user need to select yes option whether user website use proxy or not.
  • Now the user is able to check the website and see if https is working or not. Users have to write the below command to check whether their website is https secure:
 

https://userdomainname.com

 

  • Last step is to redirect all the non secure traffic (HTTP) to secure site (https). For doing this candidate has to use CloudFlare page rules. Now all nonsecure pages will do a 301 redirect.

 

 

 

 

Thanks for rating this! Now tell the world how you feel - .
How does this post make you feel?
  • Excited
  • Fascinated
  • Amused
  • Bored
  • Sad
  • Angry
Comments
General

More in General

Top LMS Integrations You Need to Improve elearning

Kamy AndersonApril 7, 2017

Make Your Professional Bio Sound Like You: Tips On Writing An Autobiography

Eleanor SummersMarch 28, 2017

4 Ways to Become Your Own Boss

Dan RadakMarch 28, 2017
supporting-image

Google’s Andromeda and Microsoft’s Andromeda: Are They the Same?

William BournMarch 22, 2017

Top 5 tips for marketers to deal with the influx of data now available

Charles GoodwinMarch 21, 2017

Improve Your Business Decisions Through Camping

Williams YoungMarch 21, 2017

How To Make Money From Your Invention

Tabitha GellerMarch 16, 2017

How Business Automation Helps Your Efficiency

Dan RadakMarch 15, 2017

How to Make Your Brain Work For You?

Eleanor SummersMarch 15, 2017