CloudFlare recently launched Universal SSL so that every user can have an SSL certificate on their website for free. One must take benefit from it. Not only it will give additional security but according to a recent announcement by Google, it is confirmed that it is one of the ranking factors and will play an important role in SEO.
As you might be knowing that buying an SSL certificate can costly but CloudFlare is providing it free of cost. Tech Arrival is using CloudFlare as CDN for a long time and before few days we have moved it to https i.e. Flexible SSL via CloudFlare. So let’s discuss from the scratch about SSL to the Full CloudFlare Flexible SSL Guide for WordPress.
Update: We are not using Full SSL for additional security.
What is SSL?
According to CloudFlare,
SSL (Secure Socket Layer) is the standard security technology for establishing an encrypted link between a web server and a browser. This secure link ensures that all data transferred remains private. It’s also called TLS (Transport Layer Security).
Benefits of Using CloudFlare Flexible SSL
- A Little boost in SEO/SERP.
- More security and encryption.
- CloudFlare will connect to your server via http but will serve visitors via https.
- Green Padlock on browsers.
- While using SSL you can enable SPDY from CloudFlare which will make your site load at super speed. For confirmation check below screenshot of Tech Arrival’s performance test by GTmetrix.
CloudFlare Flexible SSL Guide for WordPress
Note: Here we are assuming that you are already using CloudFlare on your WordPress blog. If not then read our previous article about WordPress Speed Optimizations.
- Login to CloudFlare.
- Go to CloudFlare Settings of your website.
- There you will find SSL option. Select Flexible SSL. (Bonus Tip: We will also recommend you to enable SPDY, set Automatic IPv6 to Full & Pseudo IPv4 to Overwrite headers)
- Now go to WordPress dashboard and install WordPress HTTPs Plugin.
- Open HTTPS Plugin settings page.
- Tick Always use HTTPS while in admin panel & select Yes in Proxy option.
- Now check whether your blog is opening via https or not. If yes then you can follow the further steps. If not then wait for 24 hrs to get SSL activated via CloudFlare.
- Now if you want to use only https protocol to access the site i.e. Force SSL on all pages, then you have to add a Page Rule in CloudFlare which will redirect all not https traffic to https.
- Go to CloudFlare -> Page Rules.
- Paste http://*yoursite.com/* in URL Pattern and Turn On Always use HTTPS.
- Congrats! your site is now over SSL. More secure and faster.
PS: You can also change URL in WordPress Dashboard -> Settings -> General to https.
PPS: You can also use Really Simple SSL WordPress plugin.
Thank you for reading this post and keep connected to Tech Arrival to continue enjoying wonderful posts. Share your views about this post in the comment section below. If you are still having any query throw it in the comment section.
If you find this post helpful, don’t hesitate to share this post on your social network. It will only take a moment and also it is quite easy and helpful for others.