How to enable HTTPS for WordPress without purchasing an SSL certificate


By using CloudFlare’s WordPress plugin, you can enable HTTPS for WordPress without purchasing an SSL certificate. The following article will guide you how to enable HTTPS for WordPress without purchasing SSL certificates.


To learn more how to enable HTTPS for WordPress Without purchasing an SSL certificate, you read the detailed instructions of the Taimienphi.vn article.

Importance of HTTPS

In addition to the security benefits for website users, SSL or HTTPS certificates are also one of the factors to improve website rankings in Google search listings.

Google says HTTPS is one of the factors that influence the site’s search rankings and HTTPS pages have been indexed by default. Gary Illyes of Google says only 10% of the URLs crawled and discovered on the web are HTTPS URLs and 30% of search results on the first page contain at least one or more HTTPS URLs.

So if possible you should switch to HTTPS.

Preparation steps before enabling HTTPS

Of course you can enable HTTPS for WordPress without buying an SSL certificate. However, Taimienphi.vn should only do this for websites that are regular blogs or simple websites. If your website is an ecommerce site or a website that requests user personal information (such as a username, password, credit card information, etc.) you should consider Purchase and set up SSL certificates for your domain from these SSL certificate provider the best.

Alternatively, you can get a free SSL certificate from LetsEncrypt.

How to enable HTTPS for WordPress without purchasing an SSL certificate

Here’s how to enable HTTPS for WordPress without purchasing an SSL certificate. You just need to follow the steps below:

Step 1: Move your site after CloudFlare

CloudFlare offers free CDNs, including many other benefits besides offering free CDNs to activate HTTPS and HTTP / 2 on your website. Sign up for CloudFlare and follow the instructions to move the hostname of your website to point to CloudFlare.

Step 2: Enable Felixble SSL in CloudFlare

After your website is set up with CloudFlare, visit the Crypto tab on your CloudFlare dashboard and select the option Flexible in the SSL section. Keep the rest of the settings in the Crypto tab.

how to enable https for wordpress without buying ssl 2

Step 3: Install CloudFlare Flexible SSL for WordPress

CloudFlare acts as a reverse proxy for your site and fetches the site through regular HTTP requests even when serving HTTPS pages to your visitors.

What you need to do is detect such requests and make an HTTPS request for the WordPress output pages.

Luckily, you can use plugins to do this. Just install CloudFlare Flexible SSL for WordPress and you can access the site via HTTPS.

Download CloudFlare Flexible SSL for WordPress to your computer and install it here: Download CloudFlare Flexible SSL

The CloudFlare Flexible SSL plugin for WordPress does not require any additional installation, and users will see a lock icon in the address bar when accessing their website via HTTPS.

how to enable https for wordpress without buying ssl 3

Step 4: Fix Mixed Content errors

Sometimes a plugin or theme is not properly encrypted and may not work properly when you try to access a website via HTTPS. If this happens, you will receive a Mixed Content error message on your browser’s dashboard and will no longer see the lock icon in the address bar.

If this is the case, you’ll have to fix the problem by switching to better-coded WordPress themes and plugins.

If the above method is not available, you can install another WordPress plugin to fix Mixed Content error on your WordPress site.

Install SSL Insecure Content Fixer on your WordPress site and configure it as follows:

Choose Simple or Nội dung for Fix insecure content.

how to enable https for wordpress without buying ssl 4

Section HTTPS detection, you choose HTTP_CF_VISITOR. You can also choose HTTP_X_FORWARDED_PROTO as suggested by the plugin because both options are set when using CloufFlare HTTPS.

how to enable https for wordpress without buying ssl 5

SSL Insecure Content Fixer also allows users to fix plugins, such as WooCommerce on the WordPress site for HTTPS. You can choose to activate these options if needed.

Once completed, you’ll see a lock icon appear in the address bar, and the Mixed content error message will no longer appear.

Step 5: Redirect traffic over HTTPS

Make sure to verify your website via HTTPS before taking this step. Once you’ve verified that your site content is being transferred over HTTPS properly, you can move the entire domain to use via HTTPS. To do this, you use the CloudFlare site rules.

Access Page Rules tab in the domain name on the CloudFlare dashboard and add the following rules:

URL Pattern: http: //*yourdomain.com/*

Always use https: On

how to enable https for wordpress without buying ssl 6

Note: replace yourdomain.com by the domain name of your website.

Save the rule page again. After completing this step, whenever you visit your website, you will be redirected to the HTTPS version.

https://thuthuat.taimienphi.vn/cach-bat-https-cho-wordpress-ma-khong-can-mua-chung-chi-ssl-33397n.aspx
Above Taimienphi.vn has shown you how to enable HTTPS for WordPress without buying SSL certificates. The steps are not too difficult, right? I wish you success and don’t forget to share your ideas with Taimienphi.vn.

.

Add a Comment

Your email address will not be published. Required fields are marked *