How to: Move to HTTPS in WordPress

23rd January 2018


If you’re looking to install an SSL certificate and switch your WordPress website to HTTPS, you’re not alone. As far back as 2014 Google was calling for all sites to be encrypted, to make the web a safer place to browse. Since then they’ve confirmed that security is a marker in determining placements, and that this year they will be alerting Chrome users when they visit an insecure site. If you haven’t already made the switch – now’s the time.

In case you’re still not sure what SSL and HTTPS are, they stand for Secure Socket Layer andHyper Text Transfer Protocol Secure. An SSL certificate authenticates the identity of a website and encrypts any information transferred between the user and the server – for example when someone submits personal information via  contact, sign up, or checkout form. You’ll recognise a site that’s encrypted by the padlock symbol that appears in the browser window, and if a site is trying to use an invalid certificate you’ll quite often be shown a warning message.

Where can I get an SSL certificate from?

Some hosting providers provide free SSL certificates with your account, for example via Let’s Encrypt. Alternatively, you can buy a certificate either direct from your hosting provider or direct, although when doing that latter you should check you have the ability to install a third party certificates as not everyone will allow you to do so. If there’s already a certificate installed you can move forward, otherwise your provider will be able to help you carry out the installation via your hosting account.

How do I use my SSL certificate with WordPress?

Just having the SSL certificate installed will not automatically mean that all pages, WordPress or not, will be served security. Within your WordPress site, the first step is to go to Settings > General and change the Site and WordPress Address URL from HTTP to HTTPS:

WordPress address

On doing this you will be prompted to sign in again.

The next step is to make sure all images and other resources are also loaded over HTTPS. If your site is relatively small, you can go through pages individually and change any reference in the embedded images from http:// to https:// so that they’re loaded securely. If your site is bigger, you may need some assistance doing this by running a query on the database to make sure all URLs are updated.

Theoretically any scripts and resources used to make your theme or plugins work should switch over automatically, so long as they are being enqueued correctly, but if you’re still not seeing the padlock it’s time to look there next. If you don’t feel comfortable making changes to your own theme, you can ask a web developer to do this for you – they simply need to ensure that any scripts or files called are done so securely over HTTPS rather than HTTP.

Comment...

What our customers say:

I would highly recommend Hut Six Digital for your website implementation. Jo has been fantastic to work with and has exceptional knowledge in her field. She is friendly, reliable and professional, which has resulted in our fantastic new website launch. Her training was clear and concise, and I know she will be on the end of the phone or email should I need her for a little refresh. She has enabled us to take full control of our new website, which was something other companies have been unable to offer. Excellent value for money too!

Christina Canning (SMS Alarms Ltd, Thatcham)

Jo has been personable and efficient in setting up my website. She did a great job of understanding what I wanted and providing guidance from her wealth of experience. She has explained things in a non-technical way and has been very responsive, patient and flexible in working with me. In short, Jo is great value for money and easy to work with.

Vanessa Rhone (Venus Works, Oxford)

Excellent, efficient service from Jo. Highly recommend.

Xan Rice (Journalist, Oxford)

I am not exactly a technophobe but due to previous experiences of pressing buttons that I have no business pressing I have shied away from doing thing to update or improve my site. I have called on Jo Cox’s expertise several times and she is always quick, efficient and gets you back on track whilst also calming you down. I can honestly say that there is no one else I would call on in an emergency to sort out problems with my website. I have never had a bad experience with Jo’s services or with Jo as the service provider.

Lisa Bentley (Writer, Liverpool)

Jo has been amazing. Through 1-2-1 training sessions she has helped me to make significant improvements to my website functionality. This has not only been cost effective but it also has empowered me to use the skills that I have gained to edit my website myself in the future. She has simplified what I thought would be tricky tasks. I will definitely continue to work with her in the future and I couldn’t recommend her highly enough.

Felicity Wood (Yoga Instructor, Bicester)

Jo took my simple brief outline of what I wanted and turned it into everything I wanted and more. Jo was very professional, efficient and she was patient and understanding with the fact that I was not knowledgeable about building websites or what’s involved. By the end of it Jo had given me and my team a training session around how to manage the website. I would highly recommend her!

Sharon Mulholland (Sandcastle Mortgages, Kidlington)

Jo was completely fantastic! I’d been struggling to make a WordPress blog design work and was completely stumped. I made an enquiry to Jo about some help, and she replied within 24 hours. It was easy to agree on a price for the things that needed to be done, and she had fixed everything within 48 hours of the original enquiry. I had thought my problem was too small for someone to help with it, but I was pleasantly surprised that Jo was happy to sort out the small issues with my site for an extremely reasonable fee. Throughout the process, Jo was efficient, effective and stayed in regular communication. She answered all of my questions, even the really idiotic ones, and nothing was too much trouble. The entire experience was great and I would recommend her in a heartbeat to anyone who needs help with a website project – big or small. She is, in short, superb at what she does.

Imogen Goold (Blogger, Oxfordshire)

I wish I had found Jo earlier. We wanted to progress from making simple text edits to getting more out of the CMS. After a very enjoyable training session, we can now design new pages and keep the website organised. Excellent.

Margaret Hildreth (JP Hildreth Ltd, High Wycombe)