We explain how you can quickly and easily convert your existing http, non-secure WordPress website to use https:// and be protected by an SSL certificate.

Before you use these steps you’ll need to ensure you have an SSL certificate. All Ecenica web hosting plans include Free Let’s Encrypt SSL Certificates which are pre-installed and ready for you to use.

We strongly recommend taking a backup of your WordPress website before making changes.

How to use a plugin to convert your WordPress site to use SSL

  1. Log in to your WordPress Dashboard
  2. Click Plugins > Add New
  3. Search for really simple ssl
  4. Click Install Now next next to the Really Simple SSL plugin by Rogier Lankhorst
  5. Click Activate
  6. Click Go ahead, activate SSL

How to manually edit your WordPress site to use SSL

If you don’t want to use an extra plugin and prefer to make the changes yourself manually then you can use these steps.

1. Configure WordPress site to work through https://

  1. Log in to cPanel.
  2. Click WordPress Manager.
  3. Expand your website you want to convert to https://
  4. Update Website URL from http://www.yourdomain.com to https://www.yourdomain.com
  5. Click Save Site Info

2. Update hard-coded links

Next step is to fix any hard-coded links on your website which are using http:// and change these to https://.

  1. Log in to cPanel.
  2. Click Terminal
  3. Navigate to the directory your WordPress website is in. For example, for your primary domain it would be the public_html directory:
    cd public_html

    Addon domains would be under a different directory you chose when creating your addon domain.

    cd addondomain.com
  4. Run the following command changing ‘youdomain.com’ to your own domain name. The ‘dry-run’ flag will not make changes.
    wp search-replace 'http://www.yourdomain.com' 'https://www.yourdomain.com' --dry-run
  5. If you are happy, remove ‘dry-run’ to make the changes.
    wp search-replace 'http://www.yourdomain.com' 'https://www.yourdomain.com'

3. Fix insecure items on your site

If you see an insecure or mixed content warnings when visiting your website over https://, it is typically due to CSS, JS or external links. You can look into what is causing the warnings using your web browser console.

4. Force your website to be accessed only over https – (optional)

Follow the steps in our guide How to Force HTTPS Redirect in cPanel