Title: https everywhere for subdomain multisite
Last modified: August 22, 2016

---

# https everywhere for subdomain multisite

 *  Resolved [Andrew](https://wordpress.org/support/users/snd26/)
 * (@snd26)
 * [11 years, 5 months ago](https://wordpress.org/support/topic/https-everywhere-for-subdomain-install/)
 * I have a wildcard SSL and already know how to setup https for all site admins
   on my subdomain multisite by putting in wp-config:
    define(‘FORCE_SSL_ADMIN’,
   true);
 * What is the recommended way to force https everywhere (not just in the admins
   but the frontend as well), the same as what wordpress.com uses for all their 
   sites.
 * Also if I set https everywhere, should I remove:
    define(‘FORCE_SSL_ADMIN’, true);
 * Any help appreciated.

Viewing 4 replies - 1 through 4 (of 4 total)

 *  Moderator [Ipstenu (Mika Epstein)](https://wordpress.org/support/users/ipstenu/)
 * (@ipstenu)
 * 🏳️‍🌈 Advisor and Activist
 * [11 years, 5 months ago](https://wordpress.org/support/topic/https-everywhere-for-subdomain-install/#post-5668215)
 * Two things.
 * 1) Search/replace the DB and change everything http to https for the home/siteURLs
 * 2) [https://wordpress.org/plugins/wordpress-https/](https://wordpress.org/plugins/wordpress-https/)
 * And no, don’t remove the define.
 *  Thread Starter [Andrew](https://wordpress.org/support/users/snd26/)
 * (@snd26)
 * [11 years, 4 months ago](https://wordpress.org/support/topic/https-everywhere-for-subdomain-install/#post-5668309)
 * Thanks Ipstenu. I forgot I asked this question, I was focused on fixing my other
   problem with https subdomain errors that was because of a host misconfiguration.
 * I ended up using a htaccess code to force https:
 *     ```
       # Https on everywhere
       RewriteEngine On
       RewriteCond %{HTTPS} !=on
       RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
       ```
   
 * I noticed that changing the database home/site URLs as you say, fixed broken 
   https problems on some pages (where the https is orange) that is caused because
   of unsecure elements such as iframes and images that are still in http. All elements
   and all new uploaded media now have https that keeps the https green.
 * Do I still need that wordpress-https plugin? I had a look at it and I can’t think
   of any reason to have it now I have changed the site/home URLs to https and forcing
   https by htaccess and Everything https works fine without that plugin.
 * Thanks
 *  Moderator [Ipstenu (Mika Epstein)](https://wordpress.org/support/users/ipstenu/)
 * (@ipstenu)
 * 🏳️‍🌈 Advisor and Activist
 * [11 years, 4 months ago](https://wordpress.org/support/topic/https-everywhere-for-subdomain-install/#post-5668315)
 * > I noticed that changing the database home/site URLs as you say, fixed broken
   > https problems on some pages (where the https is orange) that is caused because
   > of unsecure elements such as iframes and images that are still in http. All
   > elements and all new uploaded media now have https that keeps the https green.
 * Well… Yes. That’s why I said to run the search and replace 🙂
 * You may be okay without the plugin, you may not. Some themes and plugins don’t
   always do things ‘smartly’ and that plugin will compensate for you.
 *  Thread Starter [Andrew](https://wordpress.org/support/users/snd26/)
 * (@snd26)
 * [11 years, 4 months ago](https://wordpress.org/support/topic/https-everywhere-for-subdomain-install/#post-5668349)
 * It turns out I did need that plugin after all because I was only testing things
   on my main site, but on all the sub domains elements were not secure. That plugin
   fixes the issue.
 * I only needed media such as images secure because my htaccess code seems to secure
   everything else so far on my multisite, I was trying to find something a little
   lighter and came across this:
 * [https://wordpress.org/plugins/ssl-insecure-content-fixer/](https://wordpress.org/plugins/ssl-insecure-content-fixer/)
 * This only has a small file that secures uploaded content which is all I need.
   It also secures css, javscript and a few other things. Thought it was worth sharing
   if anyone chooses the same option as me with the htaccess to force https. This
   plugin works great.

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘https everywhere for subdomain multisite’ is closed to new replies.

 * In: [Networking WordPress](https://wordpress.org/support/forum/multisite/)
 * 4 replies
 * 2 participants
 * Last reply from: [Andrew](https://wordpress.org/support/users/snd26/)
 * Last activity: [11 years, 4 months ago](https://wordpress.org/support/topic/https-everywhere-for-subdomain-install/#post-5668349)
 * Status: resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics