Google Chrome users will be familiar with seeing ‘Not secure’ message in address bar occasionally. It happens only with a few websites. These are reportedly non secure websites. Moreover, the web addresses of these sites begin with HTTP and not HTTPS.

The sites whose web-addresses begin with HTTPS are shown as ‘Secure’. You get the message in green here, rather than red in case of HTTP. So, what’s exactly is the difference between HTTP and HTTPS anyway? Does it really matter?

HTTP stands for Hypertext Transfer Protocol. It’s the underlying protocol of World Wide Web. It dictates how messages get formatted and transmitted over the web. It defines the response ofweb browsers to various commands.

HTTPS stands for Hypertext Transfer Protocol Secure. It’s an extension of HTTP, used for secure communication over the network of computers. It is extensively used on the internet. Via HTTPS, computers confirm to a ‘code’ that’s used to scramble the messages.  Thus it can’t be red by anyone in between. It keeps hackers at bay and thereby your website’s security is boosted.

Https

In internet terms, HTTPS in web address would mean the website is protected by SSL certificate. In other words, it’s the ‘code’ used to secure the messages.

What Is SSL? And Why It’s Important

What is SSL

SSL stands for Secure Sockets Layer. It’s the technology that keeps sensitive information secure. The information is inaccessible and impossible to be broken into by cyber crooks. Sensitive information includes credit cards, SSN, login credentials, etc…

The information that flows between website and servers is encrypted. It cannot be intercepted when it passes through devices.  It is encrypted the moment it leaves the sender. The information is unencrypted only when it reaches the intended recipient. You can add SSL to any website by simply installing the SSL certificate. When you added SSL for your website, a padlock icon and ‘HTTP’ in web address can be seen.

Security matters to anyone doing business online. You are required to keep your business and customers safe. Even if you don’t sell stuff online, you still need SSL.  The HTTPS web address and SSL certificate tells visitors, you are the legitimate owner of the website. It lets them know you are serious about security. In turn you get to earn their trust. It makes the visitor know it’s an authentic page. Phishing attacks had been common when SSL wasn’t very much popular. It was times when not everyone had easy access to SSL. People can enter the login credentials with confidence.

SSL certificate boosts your rankings in SERPS. Search engines reward webmasters to get SSL. Secure websites are need of the hour. No business can be too small for hackers. When you are in a shared host, your website can be the opening to bigger sites. Browsers like Chrome can call out such websites with ‘Not Secure’ message displayed in the address bar.

How To Install GoDaddy SSL?

We assume you have a domain and managed WordPress hosting account. Both of these need to be set up with GoDaddy. The instructions need to be tweaked a bit, if not everything is purchased with GoDaddy.

Log in to your GoDaddy account. Make sure you are in ‘My Products’ page. Scroll down to find ‘SSL Certificates’ menu.  When you click on it, an additional menu opens. It should necessarily say ‘Standard SSL’. Some other installation isn’t supposed to be there.

Click the ‘Set Up’ button to the right. It prompts a drop down list of all the SSL certificates you have purchased. Choose the certificate you wish to use. You can pick one based on expiry date. Go ahead and click ‘Set Up’.

When you return to ‘My Products’ page, you can notice a new installation under ‘SSL Certificates’ menu. The installation should read ‘New Certificate’, mentioning the expiry date. Now, it’s ready to be set up and installed on a domain name.

Go ahead and click the ‘Manage’ button to the right. Since you are hosting your domain with GoDaddy, the process is really simple. You can pick a domain from ‘Select a domain hosted with us’ drop-down. This will be domain where chosen SSL certificate will be installed.

Final step in requesting the certificate is to prove your ownership of the domain. GoDaddy sends an email to whichever address, the domain is listed for. Make sure you have access to the email address. Else, talk with your client or someone who can confirm and verify that they do own the domain.

Agree to the terms and conditions. Go ahead and click ‘Request Certificate’. Eventually, you will land on the progress page. The verification progress is 50% complete straight away.

Finishing Stages of SSL Installation

You need to follow the instructions emailed by GoDaddy to prove domain ownership. Once you follow the emailed instructions, SSL status goes from ‘Pending’ to ‘Certificate Issued’.

Give Godaddy 20-30 minutes to set things up. Return to ‘My Products’ page.  Under SSL Certificates, you can notice the certificate you created with the domain name assigned to it.

Click again on the ‘Manage’ button. From the ‘Certificate Details’, you can confirm that the certificate is issued. The validity period is mentioned in the details. Everything is setup and you are ready to go.

One of the final steps is to login to your WordPress dashboard. Browse to Settings > General

Make sure you change the WordPress Address and Site Address from HTTP to HTTPS. It instructs all of your pages in the website to load over SSL. Nonetheless, GoDaddy usually does it for you.

Just to confirm everything is working properly, browse to your website. Use HTTPS in the web address instead of HTTP. Make sure everything loads up fine. Check whether it has got the green lock icon in the address bar.  It means all elements on the webpage are loaded securely. If the lock isn’t green, there is some element on the page that isn’t being served up over SSL.

Additionally, you can display SSL seal on your website. This makes it even more obvious to the visitors that you got them covered.