Convert WordPress to SSL Certificate Secure Site

Convert WordPress to SSL Certificate Secure Site

To convert WordPress to SSL Certificate secure site, you need to not only install and activate your SSL Certificate but set up your URLs as well. This will ensure that your WordPress Address, as well as every link under your website, is protected with the certificate.

Although this may seem like an intimidating task, it is not that complicated, especially if you know the things that you need to prepare prior the conversion.

Godaddy is a great option for reliable, cheap SSL certs that work with WP.  Get the best price.

Converting Your WordPress Site to an SSL Protected One

To convert your WordPress site to an SSL protected one, you need to do three major things. First is to get your certificate file and upload it to your server. Then, you need to convert your HTTP home address to HTTPS. Lastly, you need to redirect all your links and force them to use the HTTPS protocol to ensure that everything is secured.

To do all that, follow the simplified guide below:

  • Upload and activate your SSL Certificate on your server.

The first thing that you should do to convert your WordPress site into a secured one is to upload and activate your certificate. You can do this by uploading the file through your ‘TLS/SSL File Manager’ on your cPanel. You should also select which domain the certificate will be protecting to ensure that the domain that will be protected is your preferred one.

After uploading the file and providing the website URL, you can start with the second step, which is to let your website address use the HTTPS protocol.

  • Convert your WordPress Address URL and Site Address URL to HTTPS

After logging in to your WordPress dashboard, go to ‘General Settings’ and edit the ‘Wordpress Address (URL)’ and ‘Site Address (URL)’ from HTTP to HTTPS. This will turn your URL to

This will ensure that your WordPress site is converted into an SSL secured site. The remaining links inside your site, however, still need to be converted to use the HTTPS protocol. This is to ensure that everything in your website is secured.

You should also edit the wp-config.php file to force the WordPress login page to secure the connection by using your SSL Certificate. Add the line – define(‘FORCE_SSL_ADMIN’, true); – before the *Stop Editing line on your wp-config.php file to force your login page to use the certificate.

The wp-config.php file’s last lines should be like this:

define(‘FORCE_SSL_ADMIN’, true);

/* That’s all, stop editing! Happy blogging. */

  • Force every link in your WordPress site to use the HTTPS protocol.

You can force all of your links to use the HTTPS protocol by using the 301 redirect command. You need to open your .htaccess file and this line at the very top:

RewriteEngine on

RewriteCond %{HTTP_HOST} ^ [NC,OR]

RewriteCond %{HTTP_HOST} ^ [NC]

RewriteRule ^(.*)$$1 [L,R=301,NC]


This will ensure that the viewers of your website will be redirected to the HTTPS protocol instead of the old HTTP one. If you don’t have this file yet, you can easily create it, add the codes above and upload it to your WordPress files via FTP.

Converting a WordPress to SSL Certificate secure site is not really that hard as long as you have the SSL Cert file, wp-config.php file and .htaccess file at hand. So, make sure you have these before starting your conversion. Using GoDaddy or Symantec SSL Certificates will make things easier so check them out.

Leave a Reply

Your email address will not be published. Required fields are marked *