In order to add the standard security of HTTPS to your WordPress website, there are a couple of steps. This blog post won’t go through all of the steps to add an SSL certificate, but will focus more on the WordPress settings that change your website from HTTP to HTTPS.
Add an SSL certificate to your website
An appropriate SSL certificate can be purchased from most web hosting providers or domain name registrars. Companies that provide these certificates will often times provide general instructions for installation of these certificates for the different types of hosting panels that are available such as cPanel. It is best to follow instructions given from the company selling the SSL certificate.
Add the HTTPS to the website address
Once you have the SSL certificate installed, you are probably wondering why you don’t see the HTTPS in front of your website address or the lock symbol. The reason is that you need to configure WordPress first. The SSL certificate provides protection to the website, but you have to create the HTTPS. So in order to do that open up your WordPress administrative dashboard. From there, click on “Settings” and “General”. You’ll see near the top of the screen the following options for your WordPress website.
in the boxes labeled “WordPress Address (URL)” and “Site Address (URL)”, you’ll need to add the HTTPS in front of the domain name as you see in the example here. Simply save your changes, and your website should resolve immediately to show the HTTPS in front of your address bar, You should also see the lock in the front of that same address bar showing that your website is secured.
That’s it. It’s really that simple. If you wanted to only secure a portion of your website, the steps would be slightly more complicated, but for creating that valid HTTPS for your whole website, you’re done.