Do you also find it difficult to install SSL on your WordPress site? It can be a confusing process at first, but it’s simple once you start doing it.
First, let’s start with an introduction.
What is SSL?
Secure Sockets Layer or SSL is a security protocol used by website owners to encrypt all communications to and from their website. Simply put, an SSL certificate establishes a secure connection between the server and the website to protect the users from being hacked or being subject to any malicious activity by hackers.
It helps secure user information such as Usernames, Passwords, Personal Identification information, and Credit Card details. That is some highly personal information.
Also Read: Best Practices To Secure Your Website
What Type of SSL Certificate should you buy?
While purchasing a certificate, you may also come across a question, “How many types of SSL certificates are there, and which one do I need?”. Barring the depth of the subject for now, there are mainly three types of SSL certificates.
1. SSL Domain Verification Certificate
Domain Verification (DV) is used when you just need to show that you are in control of the website, and the only requirement of the certificate is email verification. If you have an informative website, blogs, or personal website, this certificate is sufficient for you.
2. SSL Certificate of Organization Verification
For this certificate, you need to verify that you are the owner of the website, and the certificate authority will contact you with the information provided. This certificate is needed for eCommerce, paid memberships or subscriptions, Donations, or Charity websites. Or if the user needs to fill out any forms that include personal information.
3. Extended Verification Certificate
Obtaining this certificate probably will take the longest time. You have to make sure that the organization that represents your website is legitimate. First, the Certification Authority verifies the ownership and then contact the business owner to confirm the SSL certificate was requested on their behalf. This certificate is an extended verification of Organization Verification.
4. Multi-domain SSL
If your site consists of multiple domain names, like xyz.com, xyz.net, etc. You need a Multi-domain SSL certificate.
5. Wildcard SSL Certificate
Websites with subdomains require a Wildcard SSL certificate to secure all the subdomains.
6. Multi-domain Wildcard SSL Certificate
If your website has multi-domains as well as subdomains, this certificate is required to secure all the domains and subdomains.
Make sure to download the certificate on your local PC after purchasing it.
Read More: 9 Types Of SSL Certificates – Make The Right Choice
How to Install an SSL Certificate in WordPress through cPanel?
You have chosen your desired certificate, purchased it, and downloaded it on your local PC. Now the obvious question that occurs is, “What now? How do I install it on my website?”. And the solution to this problem brings us to the main topic of this article. It is easy.
Step 1: Login to your cPanel.
Step 2: Navigate to ‘SECURITY’
Open SSL/TSL under it.
Step 3: Select the option labelled as ‘Generate, View, Upload, or delete SSL certificates.
Step 4: Upload the certificate in the ‘Upload a New Certificate’ Section.
Your SSL certificate has been uploaded, but it is not applied just yet. To apply for the certificate.
Step 5: Now, you have to go back to the main page of SSL/TSL, and from there, select the option “MANAGE SSL SITES.”
Step 6: In here, select ‘BROWSE CERTIFICATE’. All the installed certificates can be seen here. Now, select the certificate you have just installed.
Step 7: Now you have to copy the certificate code that you got from the Certificate Authority, including —–BEGIN CERTIFICATE—– and —–END CERTIFICATE—– and paste it into the Certificate: (CRT) field.
Step 7: Click on ‘INSTALL CERTIFICATE’. A confirmation pop-up will appear.
Congratulations, you have successfully installed the SSL certificate on your website.
It’ll take some time, from a few minutes to a few hours, to reflect on the website, so don’t worry; it is the normal processing time.
How to Enable SSL in WordPress?
Although you have done almost everything but one thing still needs completion. Enabling the certificate to your site. You can do this using a Plug-in called REALLY SIMPLE SSL PLUGIN. And it is, as the name suggests Really Simple. To add the Plug-in:
Step 1: Open WordPress and go to Plugins > Add New.
Step 2: Search for REALLY SIMPLE SSL PLUGIN and install it.
Step 3: Open PLUGINS, find ‘REALLY SIMPLE SSL PLUGIN’ open its Settings.
Step 4: Activate the plugin by clicking on ‘GO AHEAD AND ACTIVATE SSL!’.
Your website will be shifted from HTTP to HTTPS if there are no mixed content errors.
Also Read: Best WordPress Security Plugins In 2022 (Paid+Free)
What To Do if the Mix Content Errors Occur?
You may ask, What are Mix content errors? It is an error that occurs when everything on your site has difficulty in loading or can’t load over HTTPS. Everything includes everything on your website, like all the pages, images, stylesheets, scripts, videos, etc. When some can’t load to HTTPS, they are still in HTTP, that’s why the browser shows the Mixed Content Warning.
What can you do to fix it? Again, a simple plugin will come to aid.
You can add the “BETTER SEARCH REPLACE” plugin.
Step 1: Install the plugin as we’ve installed REALLY SIMPLE SSL PLUGIN. And Enable it.
Step 2: Now go to TOOLS and Select the SEARCH/REPLACE tab.
Step 3: Write the HTTP domain in the SEARCH FOR field.
Step 4: Write the HTTPS domain in REPLACE WITH field.
Step 5: Confirm it by clicking on the ‘RUN SEARCH/REPLACE’ button.
This will replace all the absolute reference HTTP URLs with HTTPS.
Congratulations, you have successfully overcome every roadblock to a secure site.