Admin SSL - Setup

Last updated on 17 July 2008 at 8:35 am

Home | Setup | FAQ | History | Reset

To setup Admin SSL on your WordPress blog please use the following instructions, paying attention to point 5 if you are using Shared SSL.

WordPress 2.2+

  1. Download and extract the latest stable version from the website.
  2. Upload the 'admin-ssl' directory to the plugins directory.
  3. Enable Admin SSL using the Plugins screen.
  4. Go to the Admin SSL config page (under the 'Plugins' menu option).
  5. Check the box labelled 'Secure my site with SSL'. If you have Private SSL, click 'Save Changes' and you're done. If you have Shared SSL, you MUST perform the following two actions:
    • Check the 'Use Shared SSL' box.
    • Enter the URL to your DASHBOARD when using Shared SSL.
    Failure to do this WILL render your website inaccessible.
  6. Click 'Save Changes'. If the page gives you an error message you need to enter your Shared SSL details again.
  7. If the page says 'Options saved' then click on any link to navigate away from this page, and your admin and login pages will be secured.
  8. You can secure all your admin pages by adding 'wp-admin/' to the Additional URLs box.  If you use Akismet I recommend adding 'wp-admin/plugins.php?page=akismet-key-config' also.

Alternatively you can check out the latest version of Admin SSL from the SVN repository, and then complete the setup from Step 3.

WordPress MU 1.3+

Please note that installation of Admin SSL on WPMU is only possible for Site Administrators.  Also, Shared SSL is disabled for WPMU installations - you must have Private SSL installed.

  1. Download and extract the latest stable version from the website.
  2. Upload the Admin SSL files to: /wp-content/mu-plugins/admin-ssl/.
  3. Copy admin-ssl.php into the the /mu-plugins/ directory.  This means it will be enabled for all the blogs on your site.
  4. Sign in as a site administrator.
  5. Open the Admin SSL configuration page under the Site Admin menu.
  6. Check the 'Secure my site with SSL' box and enter any additional urls you would like secured.  I recommend that you add wp-signup.php, for example.
  7. Click 'Save Changes' and SSL will be enabled for your site.