Adding an SSL certificate to your WordPress site is an excellent first step towards securing your data. You also have the option to add Cloudflare to your domain in addition to your SSL certificate. This allows you to take advantage of Cloudflare's services, while also continuing to secure your website. The following sections walk you though how to ensure Cloudflare is properly set up for your WordPress site.
Configuring WordPress to use an SSL certificate
View the following article for all steps you should first take to adjust your WordPress site to use an SSL certificate.
When you enable Cloudflare in the DreamHost panel, your site must use the 'www' version of the URL. For example:
If your site is currently NOT using the 'www' version, make sure that when you update the URLs in your database, you also include the www as part of the updated URL.
If you do not add www at this time, your site will throw a redirect error message after Cloudflare is added.
Enabling Cloudflare on your domain
View the following article for instructions on how to add Cloudflare to your domain:
Reviewing Cloudflare SSL options
Make sure you've first reviewed the following articles:
Those two articles give you a general overview of how Cloudflare can be configured with SSL certificates. The rest of this article details exactly how to configure your Cloudflare account to work with your SSL certificate.
Configuring Cloudflare SSL settings
- Log into your Cloudflare account at https://dash.cloudflare.com/login.
- You will see your website listed. Click your website.
- In the top row, click the 'Crypto' button.
- You can see your SSL option listed. With a free Cloudflare account, it defaults to the 'Flexible' option.
- Click the dropdown menu and select 'Full (strict)'.
After a few hours, the DNS will update and all connections between the user, Cloudflare, and DreamHost will be secure.