If you’re using free hosting with your own domain or a subdomain, you’ll want to make your website work over HTTPS (SSL). Fortunately, InfinityFree provides all the tools you need to make it so. If you like videos better then text guides, scroll on down to the bottom of this guide.
This guide uses the control panel functions and the Free SSL Certificates tool provided by InfinityFree to get SSL up and running on your site.
The first thing to do is to set up the domain name on your hosting account. When you create a new hosting account, you’ve already set up your first domain name. You can also add and remove domain names later on through the Subdomains, Addon Domains and Parked Domains section of the control panel.
This guide assumes you’re using our nameservers for your domain. This is the recommended setting and is easiest to set up. If you’re using a free subdomain, this is always the case.
The second thing to do is to add the domain to the Free SSL Certificates too.
To do so, you can follow these steps:
- Login to the client area at https://dash.infinityfree.com.
- Go to the “Free SSL Certificates” page.
- Click “New SSL Certificate”.
- Enter your domain name in the domain name field.
- A domain name looks like
example.epizy.com. Do not include any URL prefix like
- Do not include the www subdomain in the domain. Your SSL certificate will be valid for both the base domain and the www subdomain.
- A domain name looks like
- Click Create Order.
To get your SSL certificate, you will need to setup some DNS records to prove to the certificate provider that you own the domain name.
In short, you’ll need to setup some DNS CNAME records on your domain name. The records you need to add are shown on the certificate Verify page.
If you’re using our nameservers, we can setup the CNAME records for you automatically. If our nameservers are found, you will see a button “Setup CNAME Records Automatically”. Simply click it to install the CNAME records.
If you re using third party nameservers (like Cloudflare), you’ll need to setup the CNAME records at that DNS provider. For more detailed instructions, please see the dedicated article about how to create CNAME records for free SSL.
Please note that it can take a few hours for the DNS record checks to recognize the new CNAME records.
Once the check is at Ready, you can click Request Certificate to get the certificate if the button is available. If not, it should say that the certificate issuance is already in progress.
Do not remove the CNAME records until the certificate is no longer pending. The CNAME records must be present during the entire validation process or it will most likely fail. Only after the certificate has been issued (or failed to be issued) can you safely delete the CNAME record. It is, however, recommended that you keep the CNAME records, as some SSL providers allow you to reuse the same records when you renew your certificate.
After acquiring your SSL certificate, it’s time to install it on your hosting account.
You can do it in one of these ways:
Install the certificate automatically
Install the certificate manually
In short, you’ll need to copy the Private Key and Certificate and upload them to the SSL/TLS section in the control panel (in that order).
For detailed instructions please see the dedicated section about it in how to install an SSL Certificate.
After installing your certificate, it’s time to see if it worked! To do so, simply enter https:// (your domain).
If you don’t see an error page with SSL related warnings, then the certificate installation was successful. Note that you may still see Mixed Content warnings or be redirected to the non-HTTPS version of your site.
After installing the SSL certificate, it’s time to make your website use HTTPS.
In short, this involves two steps:
- Configuring your website to use HTTPS URLs everywhere.
- Setting up a redirect to ensure all visitors use HTTPS.
The first step entirely depends on how you’ve built your website, so there are no generic instructions. For the second one, you have a couple of options, all described in the how to force all traffic to HTTPS article.
If you use WordPress, for example, you can do this by manually updating the Website URL through the WordPress admin area and setting up .htaccess rules. Alternatively, you can let the Really Simple SSL plugin handle it for you.