Knowledgebase
Studio433 Support > Help Desk > Knowledgebase

Search help:


SSL Certificates

Solution

You should use SSL (Secure Sockets Layer) if your website does any of the following:

  • accepts credit card payment (not necessary if you use a third-party payment gateway such as PayPal or Worldpay)
  • uses password login
  • exchanges private data

In addition some browsers and search engines are pressurising for all web sites to use SSL, although not essentially necessary. Some search engines will now give higher ratings to those that do.

SSL encrypts all data sent beween the user and the server and vice versa. You must have an SSL Certificate vouching for the safe standards of your site to use SSL without the end user getting dire warning of insecurity.

We can provide free basic SSL certificates on our Cloud accounts, but these come with the usual provisos of free offerings - they could be withdrawn at any time without notice. Renewal takes place automatically every three months. It does not provide features such as warranty to the end user. If you need a more dependable solutuion it can be expensive, please enquire for a quote.

Installing the free Let's Encrypt SSL Certificate

You can install the Let's Encrypt SSL Ceritifcate through your Cloud Control Panel, or we can do this for you for a nominal fee.

  1. In your Cloud Control Panel, make sure the Web Site Preview option is disabled.
  2. Click on the Let's Encrypt icon for the web site concerned.
  3. Click on "Check My Domains" and you will see a list of all domains related to that web site, which will be certified with the certificate.
  4. If all domains show "OK" click "Request Certificate"
  5. Your certificate is now installed. Wait 24 hours to allow the DNS to propogate before testing the web site address(es) using the https:// prefix. A green padlock symbol should show the SSL is working without issue. Different colour padlocks or triangles indicate an issue.
  6. You can identify any issues on specific pages by visiting https://www.whynopadlock.com/
    The most common issue is graphical images linked using http:// but the above site will tell you where problems lie.
  7. Once you are satisfied SSL is working as it should, you need to force all site visitors to use it. Simply add some code to the .htaccess file in your public_html directory as follows, which will automatically switch anybody that uses http:// to https:// silently and seamlessly. In time, search engines will recognise your https:// URL. The code you need to add is as follows, add it at the top of the file:
    RewriteEngine On
    RewriteCond %{HTTPS} off
    RewriteRule ^(.*)$ https://yourdomain.co.uk/$1 [R=301,L]
    Replace
    yourdomain.co.uk with your web site's domain name
  8. That's it!
 
Was this article helpful? yes / no
Article details
Article ID: 28
Category: Web site design
Date added: 2017-02-21 12:03:04
Views: 97
Rating (Votes): Article rated 4.5/5.0 (8)

 
« Go back

 
Powered by Help Desk Software HESK - brought to you by Help Desk Software SysAid