Today I’ll be dedicating this article to SSL Certificates and the common mistakes that are being made on a daily basis. In this article I’m going to talk about every day mistakes that a lot of people are making when using SSL Certificates. Its such an important thing in today’s online world! It influences your SEO and lots of other things that could actually cost you money!
1. No https:// redirect
Lets start with one of the most common mistakes.
Thinking that you have SSL immediately after purchase or activation.
You have just purchased your new SSL Certificate or claimed one for free with Let’s Encrypt and installed it on your package (cPanel or DirectAdmin or any other CMS). A lot of people think that thats it. Well its really not, you’ve only installed it on your package but how does your website know that you have installed it? It simply doesn’t. For your website to know you have installed your SSL Certificate it needs to be redirected to the “https://”.
For this look for the (in DirectAdmin)
Use a symbolic link from private_html to public_html – allows for same data in http and https
Force SSL with https redirect
Make sure these are checked. Once you’ve done this you can go back to your WordPress and you’re going to add a new plugin called “Really Simple SSL” it’s free and makes this so much easier!
Once installed the button “Go ahead, activate SSL” appears. Leave all the settings the way they are (it auto detects the best settings for your site) and click “Save”, this will optimize your site for SSL. After that go to Settings > Permalinks, click the currently selected option again and click “Save Changes” this will relink all the links on your website. You’re now finished! Onto the next step!
2. Mixed content
This is probably one of the most common problems on websites, they have mixed content. What is mixed content you might ask? Mixed content are images that are still on “http://” and are not redirecting to “https://”. This refrains your site from getting the green lock.
Green SSL Lock
Instead of the green lock, it shows you this icon:
Mixed Content icon
This is a problem, it doesn’t give your users the secure feeling and your site is actually not fully secured. For this you’re going to use the following plugin:
Once you’ve installed it you’re going to go to Settings > SSL Insecure Content. Leave the settings as they are, changing these when you don’t know what you’re doing might break your site! Then click “Save Changes”.
You have now succesfully fixed any mixed content and the Green lock should now be visible in all its glory 🎉
Thumbnail by @fullvector / Freepik