Manually installing an SSL certificate is not as easy as it sounds. It involves editing certain files in your WordPress directory and troubleshooting issues, which, believe you us, will crop up! Instead, with our plugin, all you need to do is follow a few easy steps. No coding, no hassle, no more mixed content, or insecure content warnings. How to manually install a certificate, free or paid, using a hosting control panel such as Plesk or cPanel. How to install via the Plesk control panel: To Generate a CSR login to the Plesk admin; In the Websites and Domains section for the domain name you want to use, click Show More. Click SSL/TLS Certificates. Click Add SSL Certificate.
Cloudflare’s free plan provides a flexible SSL certificate for your WordPress website, along with basic DDoS protection and performance improvements. For an even faster and more secure website, you can upgrade within the plugin to a higher-tiered plan. The Benefits of Cloudflare Include: 1-Click default WordPress settings; Shared SSL certificate. An SSL certificate will add to your site’s domain and, more importantly, will enhance security for your users. It’ll also give you some SEO benefits. In this tutorial, you’ll learn how to install an SSL certificate for your WordPress site for free using Let’s Encrypt. If you are using the free version of the plugin, you will be able to download the SSL certificate. Follow the on-screen instructions to install the SSL certificate on your web server or hosting panel.
This article will see how to set up a Free SSL Certificate for Bitnami WordPress or WordPress on Google Cloud Hosting Easily.
In this process need some Linux command, But don’t fear it because I have to note down below all command line that needs our setting up procedures.
Everyone knows that Google is the most prominent Internet Company in the world. Google provides hosting and other cloud services for consumers. We have already seen or read in our previous article “How To Host A WordPress Website On Google Cloud.”
Table Of Contents
Connect the VM instances with SSH
Click Compute Engine then select VM instances page for access your WordPress installed VM.
After opening the VM instances, we will connect our WordPress VM with SSH. So we can use the command line and quickly set up the SSL certificate on our website.
Generate the SSL Certificate with Commands
When we have connected with SSH, we will give a command to generate the SSL Certificate.
For example, if your email address is [email protected] and your domain is example.com or www.example.com, then your certificate generating command will be this:
Configuration of the SSL Certificates.
In this step, we will configure our SSL certificate after giving the command above note down. After giving the SSL certificate issuing command, the compute engine will prompt some YES or NO authorization. I will prefer to type the Y and hit enter, like the pictures below.
Configuration of HTTPS Redirection
After generating the SSL certificate, we will configure the redirection of HTTP traffic to HTTPS traffic.
So in this step, we need one more command:
After this command, there will be open a new page like in the picture below.
Now we will add some line of code between these two lines sowing above the picture. The code is:
After adding these three code lines, we will save the bitnami.confi by using keyboard keys CTRL+X then Y, and then click Enter to save.
These three lines of code in the last line used “https://www.example.com” change as it is your domain name.
Now you will see the bitnami.confi file like this after adding these three lines of code.
Now everything is done, we are going to restart our apache server for all these changes. So our last step is to restart Apache Server.
Restart Apache Server
Use the following command to restart apache server:
There we go, our SSL certificate installation is complete.
If you have a WordPress instance on Google Cloud and want to add an SSL certificate for your website, you can follow the given steps.
By-the-way, you can use other methods, but this method is particularly for Bitnami WordPress instance.
If your WordPress website is hosted a shared hosting and using cPanel, you can install the free SSL certificate on cPanel.
If you have any issues during installation or have questions about the SSL certificate, please leave comments in the comment section. I am willing to help you.
- Remove Bitnami WordPress Banner.
Secure your website with a Free SSL certificate. Trusted by 100,000+ websites globally!
SSL Zen helps you to secure your website, protect your customer’s data and show your visitors you’re trustworthy and authentic.
Manually installing an SSL certificate is not as easy as it sounds. It involves editing certain files in your WordPress directory and troubleshooting issues, which, believe you us, will crop up! Instead, with our plugin, all you need to do is follow a few easy steps. No coding, no hassle, no more mixed content, or insecure content warnings. In other words, you require no special developer experience to move your HTTP web pages to HTTPS or to force SSL on your website.
Features of Free Version:
- Secure padlock in the browser
- Displays ‘connection is secure’ message
- Increased SEO ranking
- Customers will trust you
- Accept safe payments online
- Compliance with regulation standards
- Strong bank-level security
Note: The free version requires you to manually verify your domain name with Let’s Encrypt by uploading a file on your server. You will also need to upload the SSL certificate on your server and configure them.
SSL certificate from Let’s Encrypt is only valid for 90 days and need to be manually renewed. If you fail to renew, your website will start showing a not secure warning to the visitors.
If you want the plugin to automatically install the SSL certificate and auto-renew it, please check the premium version of the plugin.
Features of Premium Version:
- Automatic Domain Verification
- Automatic SSL Certificate Generation
- Automatic SSL Certificate Renewal
- Accelerate your website with StackPath’s Global Content Delivery Network
- Premium Support – Live Chat, Email Support
- Spam Protection
- Brute-Force Protection
- Forces Browser Validation on traffic anomalies
- Performs Real-time threat intelligence for IP addresses, source location, and information on malicious IPs.
- Patches known vulnerabilities in the Apache Struts framework by blocking requests suspected of exploiting these vulnerabilities
- Enables a set of rules designed to block common WordPress exploits
- Blocks clients performing multiple injection attacks.
- Blocks Probing and Forced Browsing
- Blocks SQL injection attack attempts
- Blocks Cross-Site-Scripting (XSS) attack attempts
- Blocks Shellshock attack attempts
- Blocks requests suspected of being a Remote File Inclusion attempt
- Blocks requests suspected of a Local File Inclusion attempt
- Blocks attempts to access and potentially harm your servers through backdoors
- Blocks requests suspected of web shell attempts
- Blocks requests suspected of Response header injection attempts
- Blocks Invalid User Agents
- Blocks Unknown User Agents
Why get an SSL padlock?
- Trust – Starting from July 2018, Google Chrome has begun to mark all non SSL websites as ‘Not Secure’. When your users see the broken padlock, their trust wavers!
- Security – SSL provides authentication, trust and compliance. If your customer is filling out forms, or making payments on your website, you need SSL to protect sensitive data from eavesdroppers.
- SEO – Google ranks SSL-enabled websites higher than unsecured websites. Hence, securing your website also helps get you on top of Google’s search results.
Facing problems with the plugin?
We have detailed documentation for the most common issues you might face while installing SSL using our plugin. Please visit our documentation site at docs.sslzen.com
Please leave a review
If our plugin helped you secure your website, please leave a review here
Wordpress Plugin Ssl Certificate
For more information about our plugin, please visit sslzen.com
Want SSL Zen plugin in your language?
You can directly translate the plugin in your language here
When you add translations, get in touch with us as we will get you listed as a Project Translation Editor for our plugin.
- By downloading our plugin, You agree to Let’s Encrypt® Terms of Service
- By downloading our plugin, You agree to LEClient license terms, a PHP LetsEncrypt client library to verify domain ownership and generate an SSL certificate for your website.
- We use Let’s Debug API, a diagnostic tool to help figure out why you might not be able to issue a certificate for Let’s Encrypt®.
- We use Freemius to collect non-sensitive diagnostic data about your website should you opt-in.
Internet Security Research Group™, Let’s Encrypt®, ISRG™ are trademarks of the Internet Security Research Group. StackPath®, EdgeSSL™ are trademarks of StackPath, LLC. All rights reserved.
To install this plugin:
- Make a backup of your website and database
- Download the plugin
- Upload the plugin to the wp-content/plugins directory,
- Go to “plugins” in your WordPress admin, then click activate.
- You will now see an SSL Zen icon on your left navigation bar. Click on it and follow the step by step guide.
What is an SSL Certificate?
An SSL (Secure Sockets Layer) certificate is a digital certificate that authenticates the identity of a website and encrypts information sent to the server using SSL technology.
Are your SSL certificates really free?
Yes. Free pictures garage door installation. All SSL certificates are generated by Let’s Encrypt® (nonprofit) with a mission to create a more secure and privacy-respecting Web by promoting the widespread adoption of HTTPS.
What benefits does SSL provide?
An SSL Certificate protects your customers’ sensitive information such as their name, address, password, or credit card number by encrypting the data during transmission from their computer to your web server.
How do I install my SSL certificate?
If you are using the free version of the plugin, you will be able to download the SSL certificate. Follow the on-screen instructions to install the SSL certificate on your web server or hosting panel.
How long are the certificates valid?
Let’s Encrypt® SSL certificates are valid for 90 days and can be renewed at no additional cost. You can easily renew your SSL certificate through our plugin.
How do I renew an SSL certificate?
Simply follow the same process you used to generate and install the SSL certificate the first time and your SSL certificate will be renewed.
Do I need technical knowledge to set up an SSL?
We’ve made the process of generating and installing the SSL certificate extremely easy. All you have to do is follow our simple step-by-step guide.
Is your plugin safe to install on my website?
Our plugin is open-source and anyone can download and inspect it before installing it on their website.
Do you support Wildcard SSL?
We currently do not support wildcard SSL. Our plugin is only built to generate an SSL certificate for your WordPress website/blog.
Which browsers will trust my certificate?
SSL certificates generated by Let’s Encrypt are trusted by all major browsers are supported.
Do I need to do the verification again when I renew?
Get Ssl Certificate Wordpress
The verification results are valid, at the time of writing, for 30 days. If you renew within that period, you should not need to re-verify. Outside of that period, you will need to do the verification again. However, it is a very simple process that requires almost no time.
I have installed the SSL certificate correctly, but my site is still “Not Secure”
The most likely reason for this is that you are still loading some resources, such as images for example, via HTTP. Browsers in this case will show “Mixed content” errors in the developers’ console. If you do not want to use developer tools, you can easily check which resources those might be by using “Why No Padlock?” service. You can read more about “Mixed Content” and how to prevent it here.
Can I see the name of my company on the SSL certificate?
Free SSL certificates are of Domain Validation type (DV) and do not hold that information. To have the information about your company, the certificate would need to pass Organization Validation (OV) or Extended Validation (EV). Both require paperwork (such as actual company checks) and cannot be offered for free as a result.
How to safely disable SSL Zen CDN plugin
Before you decide to deactivate the SSL Zen plugin, please make sure of the following things
Your website IPv4 A record for your website is pointing to your hosting server. An easy way to check this is by visiting https://www.whatsmydns.net/ and entering your website URL such as sslzen.com
If the results show your website server IP address, it means you are no longer using StackPath. The opposite of this is also true. If whatsmydns.net shows your A record as 22.214.171.124, it means you are still using StackPath. We recommend you wait for a couple of hours before deactivating the plugin.
Similar to A record, you also need to change your CNAME record for the www sub-domain. Make sure your CNAME record with host www is pointing to your domain name. For example, for domain name sslzen.com, the CNAME record for www would be sslzen.com. Again, you can use whatsmydns.net to check your CNAME resolution. Make sure you are selecting CNAME in the dropdown next to the text input where you enter your domain name.
Unable to login using cPanel credentials
For Cpanel Free/Pro users, after installing/uploading the plugin and activating it, at step 1 sometimes cPanel credentials are requested so that we can connect using cPanel’s web API when we are not able to use cPanel’s command line API to connect to your cPanel and verify your domain ownership.
Firstly, you can verify if you have a Cpanel account by using this link :2083 or Cpanel. example: sslzen.com:2083 or cpanel.sslzen.com. If you are able to see a Cpanel login screen like below that means your hosting provider comes with Cpanel and you have a Cpanel account. Enter your credentials and see if they are valid and allows you to log in to the Cpanel account. If an error message appears, you are entering the wrong credentials. If you don’t see a similar login screen, most probably the plugin would have suggested the wrong plan.
I can’t install the SSL certificate on temporary Bluehost domain
SSL certificates can only be installed on your domain name. If you are trying to install the SSL certificate on a temporary Bluehost domain it won’t work.
Please follow these instructions to replace your temporary domain name with your domain name.
Article – https://www.bluehost.com/help/article/using-your-temporary-url-with-wordpress#changing-from-temp
Rate Limit Issue while installing SSL
While installing SSL using the SSL Zen plugin, you might encounter an error message as in the below image or message like this on the plugin page:
“”cpanelfree.xyz” is currently affected by Let’s Encrypt-based ratelimits (https://letsencrypt.org/docs/rate-limits/). You may review certificates that have already been issued by visiting https://crt.sh/?q=%your_domain. Please note that it is not possible to ask for a ratelimit to be manually cleared. The Duplicate Certificate limit (5 certificates with the exact same set of domains per week) has been exceeded and is affecting the domain “cpanelfree.xyz”. The exact set of domains affected is: “cpanelfree.xyz”. It may be possible to avoid this ratelimit by issuing a certificate with an additional or different domain name.”
“Not all authorizations are valid” error message at Step 2 while installing SSL using SSL Zen plugin
There might be a situation when installing SSL using the SSL Zen Free/Premium version of the plugin, you end up getting an error message that says ” Not all authorizations are valid”. There are different reasons for cause of this error. Follow the solution that is suitable for you based on the version of the plugin you are using :
Free version /Premium version:
- Check if your WordPress is installed in the root folder ex: /home/bcyh6ur88/public_html/ .Here is how you can check it:
Log in to the WordPress Administrator Dashboard as an administrator.
In the menu at left, click on the Tools option.
Find “Site Health” and click on it.
By default, the Site Health tool immediately shows the site Status. Click on “Info” to its immediate left at the top of the screen.
Go to the WordPress Constants section. Locate ABSPATH. This is your WordPress installation path.
Most of the time users end up installing their site in a sub-folder ex: cpanelfree.xyz/site . Their WordPress installation path in such cases would be: /home/bcyh6ur88/public_html/site
Due to this reason, the domain validation might fail and you’d see the “Not all authorization are valid” error message during SSL Zen Plugin setup.
To fix this, you can install your WordPress in the root folder, so that all your subfolders are covered by SSL. For ex: if you install your WordPress under this path : /home/bcyh6ur88/public_html/, it would cover all your websites sub-folders like cpanelfree.xyz/site , cpanelfree.xyz/blog , cpanelfree.xyz/contact etc.
You can get the help of your hosting provider to install your WordPress in the root folder instead of the sub-folder. Make sure you take a backup of your site before doing this change.
Setup the plugin once again. In the case of the premium plugin, make sure you have uploaded the premium version of the plugin and then follow the setup process.
Deactivate any other SSL plugins if you have installed and activated them. Similar SSL plugins may conflict with the SSL Zen plugin and the above error would be thrown.