Secure your Website via SSL for free

Did you know that Google shows all non-SSL websites as “Not Secure”. This means that if you are not using a SSL certificate on your website, then you’ll lose customers trust.

Because SSL certificate helps protect your website data, it’s actually a requirement for accepting payments online. Normally, paid SSL certificates are quite expensive. If you are just starting a blog or making a DIY business website, then you likely want to keep costs low.

Luckily, there are multiple ways to get a free SSL certificate to reduce your website cost. In this article, we will show you how to easily get a free SSL certificate for your WordPress website and set it up all by yourself.

what is https

What is HTTPS?

HTTPS (Hypertext Transfer Protocol Secure) is an internet communication protocol that protects the integrity and confidentiality of data between the user’s computer and the site. Users expect a secure and private online experience when using a website.

We encourage you to adopt HTTPS in order to protect your users’ connections to your website, regardless of the content on the site.

How Can I Get an SSL Certificate for Free?

A lot of website owners are reluctant to use SSL due to the additional cost. This left many small websites vulnerable to data and information theft.

A non-profit project called Let’s Encrypt decided to fix this by establishing a free certificate authority.

The purpose of this certificate authority is to make it easier for website owners to get a free SSL certificate. Internet becomes a safer place if more and more websites start using SSL.

Here are the top WordPress hosting companies that offer free SSL certificate with their hosting plans ( Hosting plans that cost you a good penny).

  • Bluehost
  • SiteGround
  • HostGator
  • WPEngine
  • Dreamhost
You can also Host your Website on a Cloud Server & save on the cost. Once Hosted, you can follow below steps to Secure your website.
 

What do i need to Start ?

  • An HTTP website that is already running on Port 80.
  • Which is Hosted on a Server which you can do SSH & ability to do sudo.
  • Comfort with Command line.
Below Steps works best with Hosted Server running on Debian OS with apache2, for any other configuration visit certbot for specific commands.
 
Create an Apache Virtual Host for your domain.
 
SSH into the server

      SSH into the server running your HTTP website as a user with sudo privileges.

Configure Apache to use SSL module.
    sudo a2enmod ssl
sudo systemctl restart apache2
Check Apache server configuration.
    sudo apache2ctl configtest
sudo apachectl -S
Install Certbot client on the server

      Run this command on the command line on the machine to install Certbot.

    sudo apt-get install certbot python-certbot-apache

      Run this command to get a certificate and turning on HTTPS access in a single step.

    sudo certbot --apache -d example.com -d www.example.com
Test automatic renewal

       The Certbot packages comes with a cron job or systemd timer that will renew your certificates automatically before they expire.

        You will not need to run Certbot again, unless you change your configuration.

    sudo certbot renew --dry-run

         To confirm that your site is set up properly, visit https://yourwebsite.com/ in your browser and look for the lock icon in the URL bar.

         If you want to check that you have the top-of-the-line installation, you can head to SSL Labs to test.

Leave a Reply

Your email address will not be published. Required fields are marked *