If you’re using free hosting with your own domain or a subdomain, you’ll want to make your website work over HTTPS (SSL). Fortunately, InfinityFree provides all the tools you need to make it so. If you like videos better then text guides, scroll on down to the bottom of this guide.
This guide uses the control panel functions and the Free SSL Certificates tool provided by InfinityFree to get SSL up and running on your site.
Step 1: Set up the domain on your hosting account
The first thing to do is to set up the domain name on your hosting account. When you create a new hosting account, you’ve already set up your first domain name. You can also add and remove domain names later on through the Subdomains, Addon Domains and Parked Domains section of the control panel.
This guide assumes you’re using our nameservers for your domain. This is the recommended setting and is easiest to set up. If you’re using a free subdomain, this is always the case.
Step 2: Add the domain to the Free SSL Certificates tool
The second thing to do is to add the domain to the Free SSL Certificates too.
To do so, you can follow these steps:
- Login to the client area at https://app.infinityfree.net.
- Go to the “Free SSL Certificates” page.
- Click “New SSL Certificate”.
- Enter your domain name in the domain name field.
- A domain name looks like
example.epizy.com. Do not include any URL prefix like
- Do not include the www subdomain in the domain. Your SSL certificate will be valid for both the base domain and the www subdomain.
- A domain name looks like
- Choose the SSL provider you want to use and click Choose Provider.
Step 3: Setup CNAME records
To get your SSL certificate, you will need to setup some DNS records to prove to the certificate provider that you own the domain name.
In short, you’ll need to setup some DNS CNAME records on your domain name. The records you need to add are shown on the certificate Verify page.
If you’re using our nameservers (or are using a free subdomain), you can add it through the CNAME Records section in the control panel of your hosting account. If you re using third party nameservers (like Cloudflare), you’ll need to setup the CNAME records at that DNS provider.
For more detailed instructions, please see the dedicated article about how to create CNAME records for free SSL.
Please note that it can take a few hours for the status checks to recognize the new CNAME records.
Once the check is at Ready, you can click Verify Domain to get the certificate if the button is available. If not, it should say that the certificate issuance is already in progress.
Do not remove the CNAME records until the certificate is no longer pending. The CNAME records must be present during the entire validation process or it will most likely fail. Only after the certificate has been issued (or failed to be issued) can you safely delete the CNAME record. It is, however, recommended that you keep the CNAME records, as some SSL providers allow you to reuse the same records when you renew your certificate.
Step 4: Install the SSL certificate
After acquiring your SSL certificate, it’s time to install it on your hosting account.
You can do it in one of these ways:
Install the certificate automatically (currently in beta)
Install the certificate manually
In short, you’ll need to copy the Private Key and Certificate and upload them to the SSL/TLS section in the control panel (in that order).
For detailed instructions please see the dedicated section about it in how to install an SSL Certificate.
Step 5: Verify your website works with HTTPS
After installing your certificate, it’s time to see if it worked! To do so, simply enter https:// (your domain).
If you don’t see an error page with SSL related warnings, then the certificate installation was successful. Note that you may still see Mixed Content warnings or be redirected to the non-HTTPS version of your site.
Step 6: Configure your website to use HTTPS
After installing the SSL certificate, it’s time to make your website use HTTPS.
In short, this involves two steps:
- Configuring your website to use HTTPS URLs everywhere.
- Setting up a redirect to ensure all visitors use HTTPS.
The first step entirely depends on how you’ve built your website, so there are no generic instructions. For the second one, you have a couple of options, all described in the how to force all traffic to HTTPS article.
If you use WordPress, for example, you can do this by manually updating the Website URL through the WordPress admin area and setting up .htaccess rules. Alternatively, you can let the Really Simple SSL plugin handle it for you.