InfoPhilicHow toHow to Setup CloudFlare Free SSL for WordPress Blog

How to Setup CloudFlare Free SSL for WordPress Blog

Google has announced that they will count HTTPS as a ranking factor which means if you using HTTPS you will get a higher position in search results. This will automatically increase your Google rank. Thanks to CloudFlare Free SSL feature that allows you to use HTTPS on your blog.

What is SSL?

SSL (Secure Sockets Layer) is a standard security technology for establishing an encrypted link between a server and a client. In simple words, it creates a secure layer between your server (Website) and user (web browser).

To get your site over HTTPS you need to buy SSL certificates from the providers and install them manually on your server. Installing manually sounds quite a techie. So, here is a good news for those who wants to use HTTPS on their WordPress blogs.

CloudFlare provides free universal SSL certificate that does the exactly same job and it’s easier to setup. It’s a free certificate, and also works with Free CloudFlare accounts. Without paying extra money.

Setting up your free CloudFlare Free SSL

You must have CloudFlare CDN activated for your WordPress blog. If you don’t have it on your blog, read our easy tutorial How to setup CloudFlare CDN for WordPress blog

Once you done with the CloudFlare setup for your WordPress blog follow the following steps:

  1. Log into your CloudFlare account.
  2. Go to Crypto from the top menu bar.
  3. Choose Flexible SSL in SSL option.
CloudFlare Free SSL activation
CloudFlare Flexible SSL

It will take minimum 10-15 minutes to activate Flexible SSL. Once it activated from CloudFlare it will show green ACTIVE CERTIFICATE below as shown in the above picture.

Preparing WordPress for CloudFlare’s Flexible SSL

To prepare your WordPress blog for Cloudflare’s flexible SSL you need to install the following plugin.

CloudFlare Plugin

This plugin is essential for enabling CloudFlare’s Flexible SSL on WordPress. It will prevent infinite redirect loops when loading WordPress sites under CloudFlare’s Flexible SSL system.

Plugin link

CloudFlare plugin
CloudFlare plugin

Instruct CloudFlare to deliver content via HTTPS

After installing CloudFlare Flexible SSL plugin activate it and go back to your CloudFlare’s dashboard and add a page rule.

  1. Create a page rule for http://**
  2. In setting choose “Always use HTTPs”.
  3. Save and Deploy

It will enforce HTTPS for all the URL. Check the following picture showing page rule.


Adding * at the beginning tells CloudFlare to process all the subdomains over HTTPS. * at the end tells to process all sub-directories.

Change WordPress site address

Now, change your WordPress site address (URL) from to

  1. Go to the WordPress dashboard
  2. Settings >> General Settings
  3. Change site URL
How to Setup CloudFlare Free SSL for WordPress Blog
Change WordPress site address

Note: Don’t change WordPress address, keep it as If you change your WordPress URL to “https://“, it will break your site.

Visit your website in a browser and see if there’s a green lock showing on the top left of your address bar.

Fixing SSL Mixed Content Error

If it’s not showing a green lock, it’s due to mixed contents. This happens in rare cases. It’s because some of your plugins or links are not in HTTPS format. Don’t panic if you facing this problem. I got a solution for this too. Just follow the steps.

  1. Install Really Simple SSL and activate it (Plugin link)
  2. If you need further changes you can access plugin settings under Settings >> SSL
  3. Make necessary changes and Save Changes
Really Simple SSL settings
Really Simple SSL settings

That’s it, now check your website on a browser, you will see the green lock with “https://” at the beginning of your site URL. This is how you can use CloudFlare Free SSL on your WordPress blog.

You'll also like:
Continue to the category
Amit Malewar
Amit Malewar
Amit Malewar has been the tutorial writer since 2013. His passion for helping people in all aspects of technology flow through the expert coverage he provides. In addition to writing for InfoPhilic, Amit loves to read and try new things.

Comment Policy: Your words are your own, so be nice and helpful if you can. Please, only use your real name and limit the amount of links submitted in your comment. We accept clean XHTML in comments, but don't overdo it please.

  1. I have setup clouldflare ssl certificate to my website all the things working fine. i have create my own email id in cpanel it was successfully created and send mail to anyone . but i can’t receive email. anyone send me mail to that time show aunthanticated.
    help me.

  2. Hi, I’ve created a new domain on my web host via cpanel. Then signed up for cloudflare, set the crypto to flexible, and pointed my nameservers to the ones required by cloudflare.

    Next step: installing WP via softalicious. I set the protocol for https://
    Then I get the “A trusted SSL Certificate was not found” error.
    Should I change the protocol to http… install wp… then install the plugin to fix everything? Thanks.

    • After enabling Flexible SSL from Cloudflare, it takes some hours to initialize SSL certificate. So you can either wait or continue installation without SSL and then move your site to SSL.

  3. “Access denied” when testing HTTPS site in Google’s Structured Data Testing Tool after activation of Cloudflare SSL in my WordPress blog.

  4. Nice,
    it is really amazing post, i have complete this setup on my blog using your post, thanks for sharing helpful information.

  5. Hi Amit thanks for the Tutorial.
    i have a question, which one do you think is the best? Let's Encrypt free ssl or Cloudflare SSL?


Please enter your comment!
Please enter your name here



MyThemeShop builds the fastest WordPress themes on the market!