Bluehost is one of the top web hosts for running WordPress-based blogs & websites.
They are also one of ShoutMeLoud’s recommended WordPress hosting companies. In the past, I have shared many tutorials to help you use and get the most out of Bluehost hosting.
Here are some of the popular ones:
- How To Buy Hosting & Domain From Bluehost Hosting
- How To Install WordPress Blog On Your Bluehost Hosting
In today’s exclusive tutorial, you will be learning how to use a free SSL certificate with your Bluehost hosting. Using this guide, you will be migrating your WordPress blog from HTTP to HTTPS.
According to Google, using SSL is one of the positive ranking factors. Moreover, SSL adds a higher trust level to your blog.
When it comes to SSL certificates, you have the option of using free ones as well as paid ones.
Disclaimer: This article does contain affiliate links. If you purchase a tool through one of the links, SML will receive a small commission for coffee ☕️, at no additional cost to you.
Before we move ahead, let’s get to know a little more about SSL certificates so that you will know what you are doing.
First of all, there are various types of SSL certificates.
For an information-based site (like a blog), you are good using a free SSL certificate.
The most popular company for issuing free SSL certificates is Let’sEncrypt. They have completely changed the model of SSL certificates, and they have made it easier for individuals like you & me to start using SSL certificates without paying a dime.
However, when you are running an e-commerce platform or transaction-based site, you might consider using an EV (Extended Validation) or OV (Organization Validation) certificate that you can only get from a paid provider.
- Optional read: Things To Know Before Buying An SSL Certificate
In this tutorial, I will be sharing all the steps you need to follow to start using a free SSL certificate for your WordPress blog hosted on Bluehost hosting.
Do remember, this is an important task & you should have at least one hour to implement everything. After moving your site to HTTPS, you need to do a few other things to ensure your traffic doesn’t get affected, so you will need to make sure you have enough time set aside.
Are you ready?
Complete Tutorial On How To Use A Free SSL Certificate On Bluehost Hosting For WordPress
Note: Before you start following the steps, make sure you disable your Who.Is guard & your domain’s Who. Is information is updated.
You only need to do it for a few hours as sometime Bluehost sends email for validating domain ownership.
Once you have successfully activated the SSL certificate, you can enable the Who.Is guard for your domain again.
With that, let’s get started with this epic guide…
Disclaimer: This article does contain affiliate links. If you purchase a tool through one of the links, SML will receive a small commission for coffee ☕️, at no additional cost to you.
So Bluehost now offers a free SSL certificate for their users directly from the Bluehost cPanel.
To start using it, log into your Bluehost dashboard and click on my Sites > Manage site
Click on Security to access the SSL options panel.
In front of “Free SSL Certificate”, toggle the button to On. This will start installing the free SSL certificate on your Bluehost hosting account.
You might see a pending notice & this message:
“Working on it…
We’re setting up your SSL – this may take a few hours. In some situations, we may need you to take action. If so, you’ll receive an email with instructions. For now, feel free to start exploring WordPress or jump into building your website.”
You will also get an email from the Bluehost billing team about your free SSL certificate purchase.
Here is a video guide for the same:
In my case, I let the page work for 45 minutes & it was still loading. Eventually, I reloaded the page & had to re-toggle the “Free SSL certificate” button to On.
This time, within 5 minutes, the page stopped loading & I got the final screen.
This means the free SSL certificate has been installed on the domain & now we can migrate our site from HTTP to HTTPS.
It’s a good idea to use an online SSL checker tool like this to verify if your domain has an active SSL certificate or not.
Here is the result from my test domain after adding the free SSL certificate:
If you are doing this for an existing WordPress site, your real work starts here.
There are a few steps that you need to do to ensure you are properly moving from HTTP to HTTPS. Moreover, you also need to take care of SEO.
However, do not worry, as this tutorial is going to help you with every step to properly migrate to HTTPS.
Moving Your WordPress Site From HTTP To HTTPS
Now after activating the SSL certificate, the next step is to force everything to load on HTTPS & also ensure that the HTTP to HTTPS migration is search engine friendly. If you don’t do this, you might end up losing traffic.
Follow all the below-mentioned steps & in the next 10-15 minutes, you will have successfully moved your WordPress blog to HTTPS.
Note: SiteGround, A2Hosting, and InmotinHosting users can also take advantage of a free SSL certificate. Just ask your hosting support team to enable a free SSL certificate for you & follow these below-mentioned steps to further finish the migration from HTTP to HTTPS.
Install Really Simple SSL Plugin
When you enable your free SSL certificate on Bluehost hosting, it automatically updates the site’s URL.
However, at this moment, your site is accessible with both the HTTP & HTTPS addresses.
By using the Really Simple SSL WordPress plugin, all of your traffic on HTTP will automatically redirect to HTTPS.
- This is an easy plug & play plugin.
Once you have installed & activated the plugin, you will see a screen like this:
Click on Go ahead, activate SSL!
Edit Your .htaccess File & Add The Code For HTTP To HTTPS Redirection
You also need to add these few lines of code into your WordPress .htaccess file.
You can edit this file using the Yoast SEO plugin or by FTP. Here is a guide to learn more about editing the .htaccess file.
At the beginning or end of the .htaccess file, add:
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
Once this is done, you are almost done with moving your WordPress blog to HTTPS.
Update All HTTP URLs In Database To HTTPS Using Really Simple Plugin
The Really Simple SSL plugin + the .htaccess code above will help you redirect all traffic from HTTP to HTTPS. However, it’s a good idea to update all existing links from HTTP to HTTPS.
You can do that using a WordPress plugin called Better Search & Replace.
Install & activate the plugin. Go to Tools > Search & Replace to start using the plugin.
Note: Take a backup of your WordPress database before running this plugin.
Once this is done, you can also install the Broken Link Checker plugin & use its redirection module to find links to 3rd party sites with HTTP that should now be HTTPS.
This is a regular practice that I follow to keep my site’s SEO intact.
Now it’s time to make some changes to your Cloudflare dashboard (or use the Cloudflare WordPress plugin).
Steps For Cloudflare Users
In my earlier blog posts, I have told you to start using Cloudflare as it helps in many ways:
- 5 Reasons You Should Start Using Cloudflare Right Away
- How To Set Up Free CloudFlare CDN For Your WordPress Blog
First, log in to your Cloudflare dashboard & go to your domain.
Go to Crypto & under “SSL”, change the settings to Full.
On the same page, scroll down & enable Automatic HTTPS Rewrites.
That’s it!
Now, your HTTP to HTTPS migration is done.
However, you still need to do a couple of quick things:
- Submit your new HTTPS site to Google Search Console & submit your sitemap.
- Update your profile link on Google Analytics.
- Update your website links on social media profiles & anywhere else they exist. This step you can do in pieces in the coming days.
- Read this guide to learn more about HTTP to HTTPS migration & fixing mixed content.
- If you disabled Who.Is guard for your domain name, you can enable it now.
Well, that’s all! If you have done all the steps mentioned above, give yourself a pat on the back. It’s time to celebrate.
You should also treat me someday for this guide. 🙂
Conclusion: Using Free SSL on Bluehost
The new WordPress tools inside the Bluehost cPanel make it easier for every Bluehost user to enjoy free SSL certificates. However, if you are activating a free SSL for an existing blog, you also need to follow the steps mentioned above to ensure moving from HTTP to HTTPS doesn’t affect your traffic.
For a new blogger who is just starting out, you just need to enable HTTPS as soon as you buy hosting from Bluehost.
Now it’s your turn to let me know: How was your migration from HTTP to HTTPS? Did you face any problems & how did you overcome them? Let me know your experience in the comments section below!
Find this tutorial useful? Share it with others who are using Bluehost for their WordPress blog!
Great article for bluehost users.Thanks for sharing article on ssl certificate.It is most useful for websites.
Hi Harsh very nice and informative article about ssl
keep posting the nice articles
Hi Harsh This Blog Totally Changed My Mind About Hosting SSL, I’ll try to shift on BlueHost I think It gives Real Safety For any Website. I use HostGator from last several years.
now I switch to Blue Host because I know the Real value of SSL certificate…
Has HTTPS any impact on SERPs… ??
Hi Harsh,
Thanks such a great article describe details about ssl certificate. i would to install free ssl certificate on my website.Thanks a lot for sharing such a great article.
It says I need to install an Intermediate/chain certificate to link it to a trusted root certificate. How do I fix this? I’m using Bluehost shared hosting
Dear Harsh Brother,
Before 2days I purchased hosting from Bluehost. but there is no such an option of SSL. my Bluehost dashboard is totally different.
hey Sumit,
Did you purchased hosting from Bluehost India or U.S?
Hi harsh,
Great post buddy….i am using Blue-host and i would surely love to use these tips for installing SSL certificate…..thanks for this helpful post..!!
Arvind
Hi Harsh This Blog Totally Changed My Mind About Hosting SSL , I’ll try to shift on BlueHost i think It gives Real Safety For any Website. I use HostGator from last several year.
now i switch to Blue Host because i know the Real value of SSL certificate…
thanks man once again
Cheers
HI Bro! i think this free SSL certificate is valid only for 3months, am i right?
@Abhishek
They are but this won’t be an issue. Even after 3 months, the SSL certificate will keep working.
After 3 months the SSL certificate will need to be renewed, but it will basically take your site down for the day. My site went down at 4pm when my SSL expired, it’s 12:28am and it’s still not done renewing the certificate. I asked bluehost customer service, “so every 3 months my site will go down for a day?” They told me to try a paid ssl.
In the meantime I switched over to Cloudflare with their free SSL, so I at least have HTTPS work, just not on the origin server which was working with my CDN.
Nice Information. But is it available for Bluehost India also or only on Bluehost.com?
@Aditya
Only for Bluehost.com
Hello Harsh,
Thank you so much for this walkthrough. Currently, implemented SSL on one of my sites lately and got no issues.
Also, if you have activated the Better Search & Replace plugin, it is highly recommended to removed it once you are done using it.
Thanks again for this awesome article.
~Rodney
Hi Harsh This Blog Totally Changed My Mind About Hosting SSL , I’ll try to shift on BlueHost i think It gives Real Safety For any Website. I use HostGator from last several year.
now i switch to Blue Host because i know the Real value of SSL certificate…
Bluehost is offering the basic version of SSL for free.You can enable free SSL on Hostgator by using CloudFlare.CloudFlare is also offering SSL for free.
hello harsh
Thankyou for sharing such kind information on your blog.i really liked the content which you share.earlier i was hosting my site on hostgater but now its on bluehost and their price is much more affordable than hostgater.
thankyou..
great article Harsh. SSL Certificate is needed in the days. Https is represents security of domain.
I tried bluehost hosting once, but ad a very bad customer support experience, actually my website was attacked by an hacker once, and i asked them to help me out, they started selling me their hacking protection plans, instead of giving me any other option to revive my website. I had to pull my website back own my own, and i had to face a big monetary loss in all this. Ultimately i took off from blue host. Still looking for better option, as i don’t have faith in even hostgator hosting service.
Thanks for this detailed and informative tutorial. I am also willing to install a SSL on my blog as well and this article is really going to help me a lot. Thanks again for this post.
i am beginner, please which is best host gator or blue host ?
BLuehost U.S
Great article, always had to look out for this. Will surely read other articles from your blog. It might help in tons of ways too.
Thanks You For posting, You always have something new to tell your visitors. This is another article full of information that is unique and of high quality.
My blue hosting panel looks altogether not the same as the one you posted. Would you be able to please assist me how with accessing this CPanel
@Neha
That’s probably you are using Bluehost India.
read these articles:
https://www.shoutmeloud.com/bluehost-india-review.html
https://www.shoutmeloud.com/cancel-bluehost-india-hosting-get-refund.html