This plugin hasn’t been tested with the latest 3 major releases of WordPress. It may no longer be maintained or supported and may have compatibility issues when used with more recent versions of WordPress.

One Click SSL


A simple and easy to use WordPress SSL plugin which will redirect all non-SSL pages to SSL and ensure that all resources on your SSL pages are loaded over SSL as well.

It includes a user-friendly setup wizard upon activation to check if SSL is supported on the hosting/server before it allows the SSL to be enabled and that ensures that the website doesn’t become inaccessible if SSL is not supported.

Plugin Features

  • Check if SSL is supported on hosting/server
  • Enable SSL with a single click
  • Redirects all non-SSL URLs to https://
  • Converts all non-SSL resources (images, scripts, stylesheets, etc.) to https:// on pages
  • Redirect to non-SSL if SSL is not enabled

See our online documentation for more details and detailed instructions.


  • Testing utility to check if SSL is supported on the hosting so that the website doesn't become inaccessible.
  • Easily enable SSL with a single click after confirming SSL support.
  • If you are already on SSL (https://) the plugin will tell you that and no action is required.
  • Configure your SSL to run on specific sections and behave in a certain way as required.


Follow these steps to install the plugin:

  1. Upload the plugin files to the /wp-content/plugins/one-click-ssl directory, or install the plugin through the WordPress plugins screen directly.
  2. Activate the plugin through the ‘Plugins’ screen in WordPress
  3. Use the setup screen after activation to enable SSL or go to the One Click SSL admin menu item to enable.


What is SSL?

SSL stands for Secure Sockets Layer and it is a protocol which encrypts all data in transit on your website to prevent theft, interception or hacking.

What is required to use SSL?

You need to have SSL support on your hosting/server. This is done by installing an SSL certificate.

Is SSL mandatory?

No it is not but for the security and peace of mind of your users, it is highly recommended. Many modern day browsers are warning users about insecure websites these days.


Read all 118 reviews

Contributors & Developers

“One Click SSL” is open source software. The following people have contributed to this plugin.


Translate “One Click SSL” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.



  • IMPROVE: Setup page improvements enhancement
  • IMPROVE: Security fixes and improvements enhancement


  • IMPROVE: WordPress 5.2 compatibility
  • FIX: Metaboxes not opening/closing


  • WordPress 5.0 compatibility


  • ADD: SSL certificate info/status box
  • IMPROVE: About box on the settings page with useful links
  • IMPROVE: Ask for a rating on after a while
  • IMPROVE: Make SVG elements secure enhancement


  • ADD: Turn off SSL on deactivation of plugin
  • ADD: Admin notice when not running on SSL (https)
  • IMPROVE: Improved insecure resources scanner accuracy
  • IMPROVE: Notice: curl_setopt(): CURLOPT_SSL_VERIFYHOST value 2


  • ADD: SSL (https) tester to scan the website for insecure resources


  • ADD: New settings screen layout with postboxes
  • ADD: Override option when checking SSL support
  • IMPROVE: Load JS/CSS only on One Click SSL sections/screens
  • IMPROVE: Don’t check the site title/name when verifying SSL
  • IMPROVE: Update styling for WordPress 4.8+


  • IMPROVE: Verify that SSL certificate is valid enhancement
  • IMPROVE: Do not check and redirect SSL when SSL support is checked enhancement
  • IMPROVE: Use wp_remote_get() when PHP CURL is unavailable


  • ADD: Setting to move the admin menu item under Tools
  • IMPROVE: Apply replace_https to WordPress language_attributes filter hook
  • FIX: Regular expression issue which can break Ajax in some areas
  • FIX: PHP output buffer issue


  • ADD: Multi-site network SSL support
  • ADD: Setting to redirect to non-SSL when SSL is turned off
  • FIX: Replace HTTPS breaks on filters with Array/Object data


  • Initial release of the plugin

See the release notes for a full, historic list of releases.