OpenCourser brand icon
Sign in
We may earn an affiliate commission when you visit our partners.
Course image
Udemy logo

HTTP to HTTPS - Secure your Website with SSL for Free

4.6 Filled star Filled star Filled star Filled star Half star
Based on 755 ratings
Andrew Williams

It’s a bit unnerving, right? You’ve put time and effort into building your website, but when visitors land on your page, they might see that dreaded “Not Secure” warning. In today’s world, where online security is more important than ever, that little message can seriously impact how much people trust your site.

Read more

It’s a bit unnerving, right? You’ve put time and effort into building your website, but when visitors land on your page, they might see that dreaded “Not Secure” warning. In today’s world, where online security is more important than ever, that little message can seriously impact how much people trust your site.

Trust is EverythingImagine this: a potential customer visits your site, but instead of feeling reassured, they hesitate because their browser warns them about security. It’s not just a minor issue—it’s a deal-breaker. People are becoming increasingly cautious about sharing their information online, and a website that isn’t secure can instantly lose credibility.

How to Know If Your Site Is SecureIt’s easy to check. Just glance at the address bar of your browser. If your site is secure, you’ll see a little padlock icon—sometimes even the word “Secure” next to it. If it’s not secure, there’s no padlock, and some browsers, like Google Chrome, may even display “Not Secure.”

That’s not a good look.

The Solution? SSL (Secure Sockets Layer)SSL is the industry standard for creating a secure, encrypted connection between a website and a visitor’s browser. You’ll know a website is protected when the URL starts with “HTTPS://” rather than just “HTTP://”—the “S” means secure.

Setting up SSL used to be a hassle, and it could get pretty pricey. But the good news? You don’t have to worry about that anymore. In my course, I’ll show you how to get a free SSL certificate, install it, and make your site secure—step by step. Plus, we’ll boost your site’s speed and security even further by connecting to Cloudflare, a powerful content delivery network.

Here’s What You’ll Learn:

  • The importance of SSL and why it helps your website rank better on Google.

  • How HTTPS works and how to set it up correctly.

  • Tips on checking whether your site is already secure (some hosts set it up for you automatically).

  • How to update your site and make sure all your pages are fully secure.

  • Using Cloudflare to protect your site and boost performance.

  • Handling mixed content issues and fixing them to maintain full SSL security.

  • Updating Google Analytics and Search Console after transitioning to HTTPS.

Why This Course Is Different:I know that technical stuff can feel overwhelming, so I made this course hands-on and beginner-friendly. I’ll walk you through every step using one of my own sites as an example. You can follow along and see exactly how it’s done. At the end, I’ve included a complete conversion from start to finish in a single video—no guessing, just clear guidance.

Ready to Make Your Site Secure?Join me, and let’s make sure your website shows that reassuring padlock—so your visitors know they can trust you.

Enroll now

What's inside

Learning objectives

  • Understand why ssl is important.
  • Understand how ssl works.
  • Migrate an http wordpress website to https
  • Use autossl if it is enabled on the host.
  • Setup redirects so google will know the site has moved, and visitors will automatically be redirected to the secure https webpage.
  • Secure the wordpress dashboard, so those that login always have a secure connection.
  • Check that ssl is working on all pages on a website.
  • Find and fix mixed content.

Syllabus

Setup an account on Cloudflare and add website(s)
Introduction

In this video, I'll introduce myself, and what you can expect from this course.

Read more

SSL, TLS, confused?  This lecture explains what SSL is, and why you should implement it on your site.

Since version 58 of cPanel, AutoSSL has been available to web developers. This lecture shows you how to check if your cPanel is up-to-date.

This lecture explains a little bit more about how SSL works.

If your web host has AutoSSL enabled, you may already have an HTTPS version of your site available to you.  This video looks at how you can check.

So, with AutoSSL enabled, my sites now have both HTTP and HTTPS versions.  This is not a great idea and I'll explain why in this lecture

This lecture quickly goes through the type of web host you need for this course..

Taking backups of your Wordpress website is something we all should be doing on a regular basis.  That is especially true before any major work is done on a site.

I am going to ask you to install Cloudflare on your site, so this video explains why.  I've been using it for years as a CDN to speed up my web page load times, and lower site downtime, but there are other great reasons to use this free tool.

This lecture will show you a simple view of how Cloudflare works as a proxy.

Let's create a Cloudflare account so we can start benefiting from this free tool.

In this tutorial, we'll add a website that we are going to want to convert to HTTPS.

Some web hosts work closely with CloudFlare.  If yours does, then you can access some of Cloudflare's features from within your cPanel.  All you need to do is connect your Cloudflare account with your cPanel.  We'll do that in this lecture.

To take full advantage of Cloudflare, you need to change the DNS at your registrar so that your site is now served directly from Cloudflare (which communicates with your web host).

We've talked about certificates in this course, and edge certificates in the last lecture. Let me explain what these are and what they are for.

This tutorial should consolidate your understanding of SSL certificates and how they exert levels of security on a website.

For full SSL (strict), you need a certificate on your server.  This lecture will show you how you can setup a free certificate using Cloudflare.

For those that have AutoSSL configured on their server, but want to remove AutoSSL, this lecture shows you how to exclude your domain from AutoSSL.

If you have a certificate installed on your server that you want to remove, e.g. the one created by AutoSSL, then this lecture shows how to remove those certificates, so we can generate our own Origin certificate in Cloudflare.

Let's create a free origin certificate for our website using Cloudflare.

Let's install the origin certificate on our web server.

When we log into the Wordpress Dashboard, we want the connection to be secure, so this lecture shows you how to force the secure HTTPS connection.

We want to get rid of the old insecure http version of every page on the site. This lecture will take you through the steps.

If the dashboard does lock you out of a secure login, then this lecture explains how to reinstate the insecure login until you can find the issue.

Just a quick video of the WP Fastest Cache Issue.

With the website conversion largely done, we need to check the site for SSL issues.  We will use a few different sites to check for issues, but the most important of these spiders your site to check all pages for SSL.

Mixed content causes problems by making otherwise secure pages, insecure.  It is important to find and fix this mixed content, and fortunately it's quite easy.  This lecture shows how to find and fix mixed content.

This lecture shows a real example of finding and fixing mixed content on a website.  I have attached a text file resource to this lecture that includes the URLs of the free tools I use in the video.

Sometimes it's "impossible" to fix the mixed content.  For example, it may come from a plugin that has not been updated, so the resources used by that plugin are insecure.  I had this issue on one of my sites with a plugin that I wanted to keep, simply because there was no viable alternative.  This is where a plugin can help.

Do you have a robots.txt file?  

Have you disavowed links to your site?

Don't forget to check any links you may have hard coded in your site.

If you use Google Analytics, you might want to go in and change properties to the HTTPS prefix, but it is not essential.

If you use Google Search Console, you need to go in and add the HTTPS version of your site.  Google sees the HTTP and HTTPS versions as separate sites.  By adding it to search console, you'll be making sure Google knows about your "move".

This lecture shows a complete run-through of the entire process, from adding the site to Cloudflare, to installing certificates and creating redirects.

If you decide to use AutoSSL, you may find that you get emails suggesting a problem with certificate renewal.  I get this on some domains constantly.  Although it usually does finally auto-update, it can be a stressful time.  This lecture shows you how easy it is to "upgrade" to a different certificate.

This lecture is a list of all resources mentioned in this course.

Save this course

Create your own learning path. Save this course to your list so you can find it easily later.
Save

Activities

Coming soon We're preparing activities for HTTP to HTTPS - Secure your Website with SSL for Free. These are activities you can do either before, during, or after a course.

Career center

Learners who complete HTTP to HTTPS - Secure your Website with SSL for Free will develop knowledge and skills that may be useful to these careers:
Web Developer
A Web Developer is responsible for building, maintaining, and updating websites, ensuring they are functional, secure, and user-friendly. This course provides crucial, hands-on knowledge for any aspiring or practicing Web Developer, focusing on a fundamental aspect of modern web security. It details the process of migrating a website from HTTP to HTTPS, including setting up SSL certificates, managing DNS with Cloudflare, and resolving mixed content issues. By mastering these skills, a Web Developer can significantly enhance website trust, improve search engine rankings, and protect visitor data, making them highly effective in delivering secure web solutions.
See salaries and explore the career path for Web Developer
Full-Stack Developer
A Full Stack Developer possesses expertise across both front-end and back-end web development, designing, building, and maintaining entire web applications. This course strengthens a Full Stack Developer's understanding of foundational security layers, particularly the implementation of SSL/TLS. It walks through practical steps like integrating Cloudflare for content delivery and security, installing origin certificates, and managing DNS, all vital components of a robust web infrastructure. Mastering these details in securing websites from HTTP to HTTPS is integral to delivering comprehensive, secure, and high-performing web solutions.
See salaries and explore the career path for Full-Stack Developer
SEO Specialist
An SEO Specialist focuses on optimizing websites to rank higher in search engine results, driving organic traffic and improving online visibility. The course directly addresses a critical ranking factor: website security via HTTPS. An SEO Specialist will learn the importance of SSL for Google rankings and how to implement it effectively, including setting up redirects and updating Google Search Console properties after an HTTPS migration. This ensures that a site maintains its search equity and signal to search engines that it is a secure and trustworthy resource, which is paramount for achieving top search engine optimization performance.
See salaries and explore the career path for SEO Specialist
Ecommerce Specialist
An Ecommerce Specialist manages and optimizes online stores, focusing on maximizing sales, customer experience, and transactional security. For an Ecommerce Specialist, the course content is vital, as securing an online store with HTTPS is non-negotiable for building customer trust and protecting sensitive payment information. This course equips learners with the practical skills to migrate an ecommerce site to HTTPS, set up SSL certificates, and troubleshoot security issues. This knowledge is essential for ensuring that customers feel safe making purchases, thereby reducing cart abandonment and fostering loyalty in the competitive world of online retail.
See salaries and explore the career path for Ecommerce Specialist
Website Administrator
A Website Administrator oversees the operational health, performance, and security of websites, ensuring continuous availability and a trusted user experience. For a Website Administrator, this course is highly relevant, providing a practical, step-by-step guide to securing websites with SSL. Learners will gain expertise in identifying and resolving “Not Secure” warnings, implementing free SSL certificates, configuring Cloudflare for enhanced security and speed, and updating crucial elements like Google Analytics and Search Console. This comprehensive understanding of HTTPS migration and ongoing security maintenance is indispensable for safeguarding websites and their visitors.
See salaries and explore the career path for Website Administrator
Internet Marketing Consultant
An Internet Marketing Consultant advises businesses on their online strategies, focusing on improving web presence, visibility, and customer acquisition. This course is exceptionally relevant for an Internet Marketing Consultant as it provides a deep dive into website security, a critical factor for online credibility and search engine performance. The ability to guide clients through securing their websites with SSL, addressing “Not Secure” warnings, and leveraging services like Cloudflare significantly enhances a consultant's value proposition, ensuring clients' online platforms are trustworthy, performant, and optimized for strategic growth.
See salaries and explore the career path for Internet Marketing Consultant
Digital Marketing Specialist
A Digital Marketing Specialist plans and executes online marketing campaigns, focusing on user engagement, lead generation, and brand reputation. This course is highly beneficial for a Digital Marketing Specialist because website security directly impacts user trust and conversion rates, and HTTPS is now a foundational element of a credible online presence. Understanding how to secure a website with SSL, leveraging Cloudflare for performance, and addressing security warnings ensures that marketing efforts land on a trustworthy platform, preventing potential customers from being deterred by security alerts and enhancing overall campaign effectiveness.
See salaries and explore the career path for Digital Marketing Specialist
Online Business Manager
An Online Business Manager handles the day-to-day operations of an internet-based business, including its technical infrastructure, marketing, and customer service. For an Online Business Manager, this course is highly valuable as website security is paramount for maintaining customer trust and operational integrity. The course provides the practical skills to ensure their business's website is secure with HTTPS, explaining how to install SSL, utilize Cloudflare for performance and protection, and manage the technical aspects of migration. This knowledge empowers them to safeguard their online assets and ensure a reliable, trustworthy platform for their customers.
See salaries and explore the career path for Online Business Manager
User Experience Designer
A User Experience Designer focuses on making products and services easy, enjoyable, and efficient for users. This course is especially helpful for a User Experience Designer because website security directly impacts a user's perception of trustworthiness and safety. A site displaying “Not Secure” warnings creates significant friction and distrust, undermining the entire user experience. Understanding the technicalities of SSL implementation and how to ensure a secure connection means a designer can advocate for and implement design choices that uphold user confidence and seamlessly integrate security, contributing to a superior overall user journey.
See salaries and explore the career path for User Experience Designer
Web Content Manager
A Web Content Manager is responsible for the content strategy, creation, and publication on websites, ensuring information is accurate, engaging, and accessible. For a Web Content Manager, this course is beneficial because the security status of a website directly impacts how users perceive and interact with its content. A “Not Secure” warning can deter visitors, regardless of content quality. Understanding the process of migrating to HTTPS, how SSL works, and fixing mixed content issues, ensures that the content they manage is always delivered on a trusted and secure platform, which is crucial for maintaining audience engagement and the website's overall reputation.
See salaries and explore the career path for Web Content Manager
Technical Project Manager
A Technical Project Manager oversees the planning, execution, and delivery of technical projects, coordinating teams and ensuring project goals are met. This course may be helpful for a Technical Project Manager by providing a clearer understanding of the technical intricacies involved in website security projects, specifically migrating sites to HTTPS. Knowing the steps for SSL certificate installation, Cloudflare integration, and common challenges like mixed content detection allows a project manager to better define scope, estimate timelines, and anticipate potential roadblocks, leading to more efficient project execution and informed decision-making for web-related initiatives.
See salaries and explore the career path for Technical Project Manager
DevOps Engineer
A DevOps Engineer bridges development and operations, automating software delivery and infrastructure management, often with a focus on reliability and security. This course may be useful for a DevOps Engineer to understand the practical, hands-on aspects of secure socket layer implementation for web applications. While a DevOps role typically involves more complex infrastructure, the principles of certificate management, DNS configuration via Cloudflare, and ensuring secure communication channels are fundamental. The course provides a solid, accessible foundation in managing external CDN services and configuring application-level security, which can inform broader system architecture decisions.
See salaries and explore the career path for DevOps Engineer
IT Support Specialist
An IT Support Specialist provides technical assistance and troubleshooting for computer systems, networks, and software applications. This course may be useful for an IT Support Specialist who frequently encounters website-related issues, particularly those concerning security warnings and website accessibility. Understanding how HTTP to HTTPS migrations are performed, how SSL certificates function, and how to identify and fix common problems like “mixed content” provides an IT Support Specialist with specific, actionable knowledge. This allows them to more effectively diagnose and resolve user or client complaints related to website security and performance.
See salaries and explore the career path for IT Support Specialist
Junior System Administrator
A Junior System Administrator supports the maintenance, configuration, and reliable operation of computer systems and servers. This course may be useful for a Junior System Administrator as it provides practical experience with essential website security and performance configurations, particularly regarding SSL certificates and CDN integration with Cloudflare. While not covering the full breadth of system administration, the hands-on process of setting up and troubleshooting HTTPS, managing server certificates, and understanding DNS changes are valuable skills that directly contribute to ensuring the secure and efficient operation of web-facing systems under their purview.
See salaries and explore the career path for Junior System Administrator
Cyber Security Analyst
A Cyber Security Analyst protects an organization's computer systems and networks from cyber threats, detecting vulnerabilities and responding to incidents. This course may be useful for a Cyber Security Analyst as it provides a practical, real-world understanding of a fundamental application-layer security protocol: SSL/TLS. While the role typically encompasses a much broader range of security domains, understanding the mechanics of how websites secure their connections from HTTP to HTTPS, including certificate management and CDN integration like Cloudflare, can enhance one's ability to assess web application security postures and identify common misconfigurations or vulnerabilities within web environments.
See salaries and explore the career path for Cyber Security Analyst

Reading list

We haven't picked any books for this reading list yet.
Cover image
Automated Threat Handbook
Save
Provides a detailed overview of the OWASP Top 10, which are the most critical web application security risks. It provides guidance on how to prevent these risks from being exploited.
Automated Threat Handbook
Paperback
$$
Cover image
Industrial Network Security
Save
Provides a comprehensive overview of web application security. It covers a wide range of topics, including authentication, authorization, input validation, and security testing. It is suitable for experienced web application developers and security professionals who want to learn more about web application security.
Industrial Network Security
Paperback
Check
Industrial Network Security
Kindle Edition
Check
Cover image
Practical Malware Analysis
Save
Provides a practical guide to malware analysis. It covers a wide range of topics, including malware detection, reverse engineering, and malware analysis tools. It is suitable for experienced security professionals who want to learn more about malware analysis.
Practical Malware Analysis: The Hands-On Guide to...
Paperback
$$
Practical Malware Analysis: The Hands-On Guide to...
Kindle Edition
$$
Cover image
The Hacker Playbook
Save
Provides a comprehensive guide to penetration testing and exploitation. It covers a wide range of topics, including vulnerability assessment, exploit development, and post-exploitation techniques. It is suitable for experienced security professionals who want to learn more about penetration testing and exploitation.
The Hacker Playbook 3: Practical Guide To...
Paperback
$$
The Hacker Playbook: Practical Guide To Penetration...
Paperback
$$
The Hacker Playbook 2: Practical Guide To...
Paperback
$$
The Hacker Playbook: Practical Guide To Penetration...
Kindle Edition
$$
The Hacker Playbook 2: Practical Guide To...
Kindle Edition
$$
The Hacker Playbook 3: Practical Guide To...
Kindle Edition
$$
Cover image
The Art of Deception
Save
Provides a fascinating look into the human side of security. It covers a wide range of topics, including social engineering, phishing, and identity theft. It is suitable for cybersecurity professionals, security awareness trainers, and anyone who wants to learn more about the human element of security.
The Art of Deception: Controlling the Human Element...
Hardcover
$$
The Art of Deception: Controlling the Human Element...
Kindle Edition
$$
Cover image
The Web Application Hacker's Handbook
Save
Provides a practical guide to securing web servers. It covers a wide range of topics, including web server configuration, security patching, and web application security. It is suitable for web server administrators and security professionals who want to learn more about web server security.
The Web Application Hacker's Handbook
Paperback
Check
The Web Application Hacker's Handbook
Kindle Edition
Check
Cover image
Cybersecurity Framework Smart Grid Profile
Save
Provides a comprehensive overview of the NIST Cybersecurity Framework, which set of guidelines for protecting critical infrastructure. It is suitable for organizations that want to improve their cybersecurity posture.
Cybersecurity Framework Smart Grid Profile: NIST...
Paperback
$$
Cover image
Nist Special Publication 800-53 Information Security
Save
Provides a comprehensive overview of the Security Controls for Federal Information Systems and Organizations (NIST SP 800-53), which set of security controls for federal information systems. It is suitable for organizations that want to implement or maintain a security control program.
Nist Special Publication 800-53 Information Security
Paperback
Check
Nist Special Publication 800-53 Information Security
Kindle Edition
Check
Cover image
SSL and TLS: Theory and Practice, Second Edition
Save
Delves into the specific applications of SSL/TLS in various protocols like HTTP, SMTP, IMAP, and LDAP. It's a valuable resource for anyone interested in using SSL/TLS for secure communication in these protocols.
SSL and TLS: Theory and Practice, Second Edition
Paperback
Check
SSL and TLS: Theory and Practice, Second Edition
Kindle Edition
Check
Cover image
Network Security with OpenSSL
Save
Offers a hands-on approach to SSL/TLS using the OpenSSL library. It covers both theoretical concepts and practical implementation, making it suitable for developers who want to integrate SSL/TLS into their applications.
Network Security with OpenSSL
Paperback
Check
Network Security with OpenSSL
Kindle Edition
Check
Cover image
SSL and TLS
Save
Written by the same author as 'SSL and TLS: Theory and Practice', this book goes deeper into the technical details of TLS protocol design and implementation. It's an excellent choice for those who want to gain a comprehensive understanding of the protocol's inner workings.
Ssl and Tls: Designing and Building Secure Systems
Paperback
$$$
Cover image
Cryptography Made Simple
Save
While this book doesn't specifically focus on SSL/TLS, it provides a solid foundation in cryptography, which is essential for understanding SSL/TLS. It uses real-world examples and clear explanations, making it suitable for readers with no prior knowledge in cryptography.
Cryptography Made Simple (Information Security and...
Hardcover
$$
Cryptography Made Simple (Information Security and...
Kindle Edition
$$
Cover image
SSL/TLS Under Lock and Key
Save
Assumes no prior technical knowledge and is aimed at business professionals and managers. It helps you understand SSL/TLS from a business perspective, providing guidance on implementation and management.
SSL/TLS Under Lock and Key: A Guide to...
Paperback
$$
Cover image
Simple Steps to Data Encryption
Save
Provides a beginner-friendly introduction to SSL/TLS and PKI. It uses plain language and practical examples to explain complex concepts, making it suitable for anyone with little to no prior knowledge of security protocols.
Simple Steps to Data Encryption
Paperback
Check
Simple Steps to Data Encryption
Kindle Edition
Check
Cover image
Introduction to Machine Learning
Save
Textbook on machine learning. It covers a variety of topics, including machine learning algorithms, machine learning applications, and machine learning security. It good resource for anyone who wants to learn more about machine learning and how to use Cloudflare to protect their website.
Introduction to Machine Learning
Paperback
Check
Introduction to Machine Learning
Kindle Edition
Check
Cover image
Big Data
Save
Guide to big data. It covers a variety of topics, including big data architecture, big data analytics, and big data security. It good resource for anyone who wants to learn more about big data and how to use Cloudflare to protect their website.
Big Data: A Revolution That Will Transform How We...
Kindle Edition
$$
Learning With Big Data (Kindle Single): The Future...
Kindle Edition
$
(Italiano) Big data. Una rivoluzione che trasformerà il nostro...
Hardcover
$$
(Español) Big data: La revolución de los datos masivos...
Kindle Edition
$$
(Deutsch) Lernen mit Big Data: Die Zukunft der Bildung
Paperback
$$
(Deutsch) Big Data: Die Revolution, die unser Leben verändern...
Hardcover
$$
(Español) Aprender con big data
Paperback
$$
Learning with Big Data: The Future of...
Hardcover
$$
Cover image
The Myths of Security
Save
Guide to cloud security. It covers a variety of topics, including cloud security architecture, cloud security best practices, and cloud security regulations. It good resource for anyone who wants to learn more about cloud security and how to use Cloudflare to protect their website.
The Myths of Security
Paperback
Check
The Myths of Security
Kindle Edition
Check
Cover image
Network Security Essentials
Save
Textbook on network security. It covers a variety of topics, including network attacks, cryptography, and intrusion detection. It good resource for anyone who wants to learn more about network security and how to use Cloudflare to protect their website.
Network Security Essentials
Paperback
Check
Network Security Essentials
Kindle Edition
Check
Cover image
AWS System Administration
Save
The Cloudflare Learning Center collection of online courses, tutorials, and documentation. It great resource for anyone who wants to learn more about Cloudflare.
AWS System Administration: Best Practices for...
Paperback
$$
AWS System Administration: Best Practices for...
Kindle Edition
$$
Cover image
Implementing 9/11 Commission Recommendations
Save
Provides a guide to using Cloudflare to improve the security and performance of government websites.
Implementing 9/11 Commission Recommendations by...
Mass Market Paperback
$$$

Share

Help others find this course page by sharing it with your friends and followers:
Facebook
LinkedIn
Reddit
X
Link
Email

Similar courses

Similar courses are unavailable at this time. Please try again later.
Course image
Rating
4.6 Filled star Filled star Filled star Filled star Half star
Effort
2.5 total hours
Via
Udemy
Instructor
Andrew Williams
Language
English
Share this
Share to help others discover this course.
Facebook LinkedIn X Reddit Link Email
Begin learning today
Enroll now to gain full access to HTTP to HTTPS - Secure your Website with SSL for Free.
Enroll now
Save for later
Add this course to your list. Find it anytime.
Save
Our mission

OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.

Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.

Find this site helpful? Tell a friend about us.

Affiliate disclosure

We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.

Your purchases help us maintain our catalog and keep our servers humming without ads.

Thank you for supporting OpenCourser.

© 2016 - 2025 OpenCourser