注目の記事 PICK UP

Always sslize WordPress sites – CORESERVER (core server)

Last Updated 2021.02.06

How to make WordPress site SSL at all times CORESERVER (core server)

WordPressSSL header
WordPress sites are a complex system, so constantly converting to SSL can reduce the risk of attacks on sites and hacking, improving security. It also has the advantage that users can browse the site with peace of mind.
Google has announced that sites that are constantly ssl will dominate the search ranking, and it is considered to be effective in SEO.

There are four steps to sslizing a WordPress site all the time.

  1. Get an SSL server certificate
  2. Install SSL server certificates on the server side
  3. Make the URL HTTPS in the overall settings of WordPress
  4. Replace internal links such as images from http to https

This time, I will introduce the procedure to make SSL with CORESERVER (core server) used on this site.
Since the core server can also introduce ssl server certificates of other companies in support of SNI SSL, you can make the site SSL for free when used with Let'sEncrypt.

Get an SSL server certificate

For SSL server certificates, it is recommended to obtain ssl server certificates with Let's Encrypt.
Please refer to the following article for obtaining ssl server certificates.

Let's Encrypt - Get a Free SSL Server Certificate with SSL BOX
Google has announced that it will rank ssl-made sites in the top search rankings, and the constant sslization of the site is attracting attention as a new SEO measure. I will explain how to obtain an SSL server certificate in SSL BOX that can use Let'sEncrypt that can obtain SSL server certificate for free.

Let's Encrypt certificates have a short expiration date of 90 days.
I think that it is also good to purchase a cheap SSL server certificate in SSL BOX on a long-term contract and save the trouble of renewing the SSL certificate if you get used to the site operation by SSL at all times.
Cheap SSL Certificate Service, SSL Box

Take a backup of your WordPress site

Before you always sslize your WordPress site, make a backup just in case.
To back up your WordPress site, we recommend backing up with the UpdraftPlus plugin.

 UpdraftPlus to easily back up & restore WordPress
 Backing up the site is a concern when running a WordPress site. Introducing Updraft Plus, a plugin that makes backup and restore easy. Automatically backs up to the cloud by linking with DropBox. You can easily restore with just one click.

The above-mentioned UpdraftPlus is a convenient plug-in that can be backed up on the spot, has a schedule backup and retention management function, and once set up, you can leave it alone. You can also restore with one click, so if you are running a site with WordPress, we recommend that you introduce it.

Configure SSL settings with CORESERVER (core server)

Register a domain that sslizes domain web settings
CORESERVER Domain Setting 1
Click "Domain Web" from the top of the core server management screen
Register a domain in the domain field for SSL in the domain information entry field
CORESERVER Domain Settings 2
CORESERVER Domain Settings 3

  1. Main items should remain blank. Coreserver's unique settings allow you to operate a multi-domain site by making this a blank.
  2. Enter the domain you want to ssl in the domain information input field for SSL. The domain enters the root domain that does not have www etc.
  3. After entering the domain to be SSL entered into the domain information input for SSL, press the "Domain settings" button to save
Select the domain to enable SSL in ssl settings
CORESERVER Domain Settings 4

  1. Select "SSL settings" from the left menu to go to the selection screen of the domain to be SSLed
  2. Domain name to enable SSL: Select the domain you want to ssl set in the domain web
  3. Click certificate settings to go to the certificate installation screen
Install ssl server certificates
CORESERVER Domain Settings 5
CORESERVER Domain Settings 6

  1. Enter the private key, certificate, and intermediate certificate in the ssl certificate installation field. Open the file of the certificate obtained by Let's Encrypt with a text editor (sakura editor, etc.) and copy and paste the contents.
  2. Private key (no passphrase): Enter the private key. Copy and paste .key the contents of the file with letsencrypt numbers
  3. Issued certificate: Enter the certificate. Copy and paste the contents of the LETSENCRYPT number.cert file
  4. Issued intermediate certificate: Enter the intermediate certificate. Copy and paste the contents of the LETSENCRYPT number Int.cert file
  5. After confirming the private key (private key), certificate, intermediate certificate, click the "SSL certificate/ intermediate certificate installation" button
  6. Click here to return
Set up the domain web again
CORESERVER Domain Settings 7
Click "Domain Web" from the left menu.

  • Domain settings need to be updated to reflect certificates correctly
  • Press the "Domain Settings" button to reflect your certificate settings without changing the contents of the domain web

The installation of the SSL server certificate for roadbikelife.net is now complete on the core server.
It will take some time to reflect the SSL certificate.
After a few minutes, check https://roadbikelife.net/.

Verify ssl server certificates

CORESERVER Domain Setting 8
Check your SSL server certificate in Chrome.

  1. With the web page open, right-click the mouse and click Validate
  2. When the verification window opens on the right side of the browser, select the item "Security" and click
  3. From Security Overview, press the View certificate button to verify the certificate

CORESERVER Domain Settings 9
Verify the validity period of the certificate.
Ssl server certificates obtained with Let's Encrypt are valid for 90 days.

Change wordpress's overall settings to HTTPS

WordPress Settings 1
Change the site URL of the entire WordPress in the WordPress management screen.
From the menu on the left side of the →, click "General".

  • WordPress address (URL): https://roadbikelife.net (example) and change from http to https
  • Site address (URL): https://roadbikelife.net (example) and change from http to https

Be careful not to add /(slash) at the end of the URL.
Now you can change the rough part from http to https.
However, for the image (media) file of the posted content, it remains the URL of http, so it must be corrected.

Change the internal link of a WordPress post to https

WordPress Settings 2
Use Search Regex, a plug-in that allows you to replace the content of an article you post with any text.
From the extra-→, search for "Search Regex" by keyword in "Add New" and install and activate it.

Replace http links in posts with https links in Search Regex

Open Search Regex
WordPress Settings 3
Click "Search Regex" in the → menu on the left side of the Extram.
Set up replacements in Search Regex
WordPress Settings 4

  1. Search pattern:enter http://roadbikelife.net (example)
  2. Replace pattern:https://roadbikelife.net (example)
  3. Click the Replace button. http://roadbikelife.net search results for posts that are typed As a result, and the replaced text is also displayed. At this point, it has not been replaced and saved yet, so let's check if there is a problem with the contents to be replaced.
Replace with Search Regex
WordPress Settings 5

  1. Look at Results to see what will be replaced. Since there is a "view" link on the right of the Results screen, let's check the page that is actually replaced and check whether there is a problem.
  2. Press replace&Save button to replace and save
  3. Search Regex does not support fixed pages. The contents in the fixed page must be manually modified

Check if there is a problem by accessing it with HTTPS in your browser

WordPress Settings 6
We're trying to do that in the Chrome browser.

  1. Open the website and click "Validate" from the right click
  2. Click the Security item from the top of the verification screen to check the security status
  3. HTTPS in the site is fine if this page is secure (value HTTPS)
  4. If there is content (images or external ad links) that is partially loaded with HTTP, "protected communication" will not be displayed at the top of the browser. Find and manually modify http-loaded content on the verification screen
  5. Major ad distributors (A8 Net Value Commerce) are delivering advertisements using HTTPS, so there is no problem, but other ad distributors may be loaded with HTTP. Make sure your ad provider is HTTPS-enabled before you fix it to HTTPS

Do I need a 301 redirect in .htaccess?

Since the URL changes from http to https, will 301 redirection be required in .htaccess?
But if you are able to migrate from http to https properly, you do not need to set up .htaccess.
Tip: You don't need to change the URL of an external link to https:// after https migration: Overseas SEO Information Blog
If it is a complete HTTPS site with a mechanism called HSTS (HTTP Strict Transport Security), it seems to be a mechanism that automatically accesses it with HTTPS from the second time onwards even if it is accessed by HTTP.
When this site also moved from HTTP to HTTPS, I was able to migrate to HTTPS without any problems without installing .htaccess.
Therefore, the description of .htaccess is omitted.

What to do and more from HTTP to HTTPS

Change properties to HTTPS in Google Search Console

Change the URL of the site registered in Google Search Console to HTTPS.
If you have already registered a site URL with HTTP, register a new HTTPS URL with "Add Property".
Reference:

Google Marketing Platform - Unified Advertising and Analytics
Introducing Google Marketing Platform, a unified marketing and analytics platform for smarter marketing measurement and better results.

If you are using Google Analytics for access analysis, this will also be corrected.
You can modify it from the "Management" item in Google Analytics with the default URL item in "Property Settings".
Don't forget to save it at the end.

Coreserver (core server) site always SSL summary

It was a procedure to always sslize a WordPress site operated by CORESERVER (core server).
I was accustomed to the management screen of the core server, so I did not care during the work of SSL, but when I made it into an article like this, the core server had a lot of trouble moving around in the management screen and I was impressed that it was difficult to use after all.
If you are an intermediate or higher person on the Internet, it may be recognized as a cost-effective server.

I keep in mind when writing articles so that I can create a site with WordPress even if I do not have knowledge of servers or programming knowledge, but I felt that the core server needed some knowledge of the server.
If you still want to operate the site cheaply on the core server, please try using it only during the trial period.
If you have a CORE A plan or higher, you can use multidomain unlimited, unlimited database, unlimited email address
I think that it is a very cheap and good server for 5,200 yen per year with unlimited.

CORESERVER. JP (Core Server) is a large-capacity next-generation rental server service that emphasizes the comfort of PHP + MySQL.

スポンサードリンク

Related post

  1. 06-02letsencrypt-aicache640

    Let’s Encrypt – Get a Free SSL Server …

  2. 06-01updraftplus-aicache640

     UpdraftPlus to easily back up & restore Word…

スポンサードリンク

Featured Posts

  1. 04-185sceneheadlight-aicache Recommended headlights for each scene
  2. 04-05spdsl-aicache640 About the compatibility of SPD and singl…
  3. 01-aicache-roadbike What is a Road Bike?
  4. 04-183headlight-aicache The latest head ride situation of road b…
  5. 04-184headlightpurpose-aicache How to choose the headlight that suits y…
  6. 03-aicahe-wheel640 Road Bike Wheels
  7. 04-115carbonwheelevolution-aicache Easy wheels cannot be attached to BROMPT…
  8. 04-04elitearionmag-aicache2 Advantages and disadvantages of elite AR…
  9. 02-brevetmedal-aicache640-2 What is Brevet?
  10. 02-aicache-conpo Road bike components

PICK UP posts

  1. 04-185sceneheadlight-aicache Recommended headlights for each scene
  2. Knog Oiベルアイキャッチ  Knog Oi A stylish bell came out from Kn…
  3. 06-01updraftplus-aicache640  UpdraftPlus to easily back up & re…
  4. 04-02longriders-aicache640  Long Riders! Thorough explanation of th…
  5. 04-46handleposition-aicache Bridgestone’s RP9 is getting a lot…
  6. 05-01ortliebsaddlebag-aicace640 ORTLIEB saddle bag convinces you of Brev…
  7. 04-04elitearionmag-aicache2 Advantages and disadvantages of elite AR…
  8. 30brevetrecommendroadbike-aicache Introducing pro shops and cafes that wil…
  9. 04-183headlight-aicache The latest head ride situation of road b…
  10. 05-13cateyevolt800-aicache640 Why VOLT 800 is recommended for road bik…

Popular posts

  1. 04-46handleposition-aicache
  2. 04-31beginner-aicache
  3. 04-286brompton-aicache
  4. 30brevetrecommendroadbike-aicache
  5. 02-pbp-aicache-640
  6. 04-05spdsl-aicache640
  7. 01-aicache-roadbike
  8. 02-brevetmedal-aicache640-2
  9. 04-115carbonwheelevolution-aicache
  10. 04-header-2017-640

スポンサードリンク

Latest posts

  1. 04-46handleposition-aicache
  2. 30brevetrecommendroadbike-aicache
  3. 04-39miyazawa-aicache
  4. 04-19wintertraining-aicache
  5. 04-15roadbike-aicache
  6. 04-286brompton-aicache
  7. 04-115carbonwheelevolution-aicache
  8. 04-185sceneheadlight-aicache
  9. 04-184headlightpurpose-aicache
  10. 04-183headlight-aicache

Recommend posts

  1. 04-header-2017-640
  2. 04-115carbonwheelevolution-aicache
  3. 04-286brompton-aicache
  4. 06-03wordpressssl-aicache640
  5. 04-31beginner-aicache
  6. 30brevetrecommendroadbike-aicache
  7. 04-39miyazawa-aicache
  8. 04-184headlightpurpose-aicache
  9. 05-13cateyevolt800-aicache640
  10. 04-183headlight-aicache

スポンサードリンク

PAGE TOP