Community
1 14726
HostiServer
2018-06-22 11:06

How to migrate to HTTPS and HTTP/2?

Starting in 2014, Google began to emphasise on importance of making web more secure for every visitor. In 2017, their requests became more persistent, and finally in July 2018, the search giant began to notify the webmasters that the Chrome browser starting with version 68 will display a warning Not Secure for all HTTP pages.

Switching over to HTTPS tutorial

1. Generate and configure a free SSL certificate on your server. In 2017, Google and other companies began to sponsor and advertise the free SSL certificates from Lets Encrypt to make switching from HTTP to HTTPS much easier. They are continuing to support it.

Let's Encrypt

2. HTTP + HTTPS. Don't disable HTTP prior to HTTPS version will be fully checked, both of them should work while switching. Tech support should configure your web server so that you will get an A+ or an A rating on the SSL Labs test. Check whether everything works correct and fix the errors.

SSL report

3. Change all website URLs to HTTPS. Then change links in HTML and CSS for images, styles, scripts and other files to HTTPS. Modern CMS do this automatically. If you’re using CDN ensure it supports SSL as well.

Keep in mind! All insecure content will be blocked by the browser.
Insecure content blocked

4. Meta-tag "referrer". This tag passes the referrer information when the visitor goes to the third-party website from yours. Especially, the use of this tag is useful for sites of webmasters who exchange traffic or want to track their visitors interactions deeper.
Place tag "referrer" in the head of all website pages: meta name="referrer" content="origin" As you can see on the graph, without this tag, after switching to HTTPS referrer data is lost. Traffic stats results without no referrer tag

6. Set up redirect. Force a 301 redirect for all website URLs on HTTPs.

7. Get your website on Google. Request indexing. Add a sitemap of your website to Search Console. Check for the crawl errors periodically.

Once your website is switched over to HTTPS, we highly recommend to enable HTTP/2.0 and HSTS.

Example of HTTPS adoption

If you’ve followed all these steps correctly your site should not have a long traffic drop. It is even might go up as it happened with our client’s website.

Switching to https traffic stats

Contents

MANAGED VPS STARTING AT

$19 95 / mo

NEW INTEL XEON BASED SERVERS

$100 / mo

CDN STARTING AT

$20 / mo

 

By using this website you consent to the use of cookies in accordance with our privacy and cookie policy.