Hello everybody! Today we will deal with the question that is being asked more and more often (thanks to the Good Corporation for this tension, huh): “How to install an ssl certificate on a WordPress site?”
The background of this post is probably known to everyone who is more or less connected with the Web: the Chrome browser in the near future will not only mark sites without an ssl certificate in a special way, but will also potentially block their download. And yes, they (Google) – absolutely do not care that your (in this case my) blog does not collect any data, does not ask for credit card numbers and is generally set to read-only mode. But arguing with Google is more expensive for yourself, which means – let’s figure out where to get it and how to install this same ssl-certificate.
Where to get the SSL certificate:
A search query on this issue gives a million options for a certain amount of money. But paying 60 euros per year somehow breaks me, and therefore – let’s change the conditions: let’s try to look for a free ssl certificate. And oops! we immediately get a link to this company, which issues certificates absolutely free of charge (i.e. for nothing), but the truth is only for three months. Those. After three months, the algorithm of actions will have to be repeated. However, I think there is an option to automate this action, however – I’m not sure yet.
So, we go to the site, and in the field we enter the link to your site:
After you entered the name of the site for which you need to receive an ssl certificate, poke on the green button with the name “Create free SSL Certificate”:
and go to the page on which you are offered three options to confirm your ownership / management of the specified domain. In my case, I selected confirmation via ftp access:
Enter your ftp access data, the robot checks their validity:
after which (if the data is correct) – you receive a certificate (in the form of an archive) + instructions for installing it:
There is an archive, but how to install an ssl certificate?
In my case (I have been using GoDaddy for many years), the installation mechanism is as follows. We go to the hosting control panel, and go to the “Security – SSL | TLS” section:
then go to the section “Certificates (CRT)”:
where we find the “New Certificate” section, and using the “Download Certificate” item, download our fresh ssl certificate :):
If everything is done correctly, something like will appear in the control panel:
after which we need to click on the “Install” button 🙂 And rejoice that the certificate is installed. However! Install – half the trouble, and then what? Then we:
1. We indicate the redirection from http to https. Surely, the links to your site via http are already indexed or known, which means that you need to make sure that users and robots fly to https. To do this, find the “Forwarding” section in the hosting control panel and configure it as follows:
301 (permanent redirect)
https (?): // www (?)
on the:
https://lavrynenko.com
where instead of a link to my blog you indicate your own :):
It remains to indicate directly on the site that it is now https. To do this, go to the WordPress control panel, Settings-General, and change the links from http to https:
Now all requests, no matter how they go – www or http in any case are redirected to https. It remains to figure out which scripts and where they come from unsafe sources, and rejoice;)
Thanks for attention!
If you have questions, write to mail , or in Telegram 🙂
UPD: the possibility of obtaining a free certificate using the specified resource is limited to one year: (Then they start demanding a switch to a paid tariff, which does not please me at all. As a result … wait for a post about creating certificates on your own;) Very soon!