This article will direct you to resources for using and managing HTTPS connections in WordPress.
SSL and HTTPS
An SSL (Secure Socket Layer) certificate is required to establish a secure connection, using HTTPS (Hypertext Transfer Protocol Secure) to encrypt communications between the server and the visitor's computer. A general guide to SSL connections for TFhost customers is here:
SSL certificates can be purchased from TFhost.
We recommend making a backup of your WordPress site from within the WordPress dashboard before making any changes to your site. For instructions on how to back up WordPress, please refer to the following article from WordPress:
WordPress and SSL
A basic WordPress installation was not designed with security in mind, and information sent from a post or page to your server is essentially readable by anyone. The more sensitive the information on your site, the more you should consider implementing HTTPS.
How to Implement SSL
A good general guide to using HTTPS with WordPress is here:
More advanced users can use the following PHP function to force a secure connection for all content:
WordPress SSL Insecure Content Fixer Plugin
The easiest method for WordPress users to enable and manage SSL is through a plugin. There are multiple solutions available for specific purposes (forcing HTTPS for logins, for instance) but one of the more popular general options is the SSL Insecure Content Fixer plugin. This allows you to modify and customize the HTTPS connections on your WordPress site, including encrypting individual pages and posts.
Instructions for installing, configuring and troubleshooting the WordPress HTTPS (SSL) plugin are below:
