Title: HTTPS-Only Mode Alert Last modified: July 31, 2022 --- # HTTPS-Only Mode Alert * Resolved [alymcf](https://wordpress.org/support/users/alymcf/) * (@alymcf) * [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/) * When I typed the above URL to my site this morning I got the message: “`HTTPS- Only Mode Alert Secure Site Not Available You’ve enabled HTTPS-Only Mode for enhanced security, and a HTTPS version of [http://www.mcfarlandcreativeworks.com](http://www.mcfarlandcreativeworks.com) is not available. Learn More….. What could be causing this? • Most likely, the website simply does not support HTTPS. • It’s also possible that an attacker is involved. If you decide to visit the website, you should not enter any sensitive information like passwords, emails, or credit card details. If you continue, HTTPS-Only Mode will be turned off temporarily for this site.`” * The URL bar in Firefox shows [https://www.mcfarlandcreativeworks.com](https://www.mcfarlandcreativeworks.com) * I am able to Continue to HTTP site and it views normally. * I don’t recall seeing this error message in the past, but maybe I did? Not sure if I maybe changed some setting recently to cause this. I had been getting hacked so I paid for Werdfence Premium, Jetpack and I think I enabled SSL somewhere ( but darned if I can find that now). * I similar messages in other websites with Firefox as well and it is annoying so I would like to be able to fix it on my site if I can. * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fhttps-only-mode-alert%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 6 replies - 1 through 6 (of 6 total) * [George Appiah](https://wordpress.org/support/users/gappiah/) * (@gappiah) * [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/#post-15875391) * I tried your website in multiple browsers (including Firefox in **HTTPS-Only Mode**) on Windows 11 and Manjaro Linux… and in all cases, I was **_automatically_** redirected to the HTTPS version of the site… and it worked fine. * I enforce HTTPS (where available) on my network though. * ![](https://i0.wp.com/i.snipboard.io/2VSkho.jpg?ssl=1) * **UPDATE:** * Here’s info about **Firefox’s HTTPS-Only Mode** and how to turn it off: [https://support.mozilla.org/en-US/kb/https-only-prefs](https://support.mozilla.org/en-US/kb/https-only-prefs) - This reply was modified 3 years, 10 months ago by [George Appiah](https://wordpress.org/support/users/gappiah/). * Moderator [threadi](https://wordpress.org/support/users/threadi/) * (@threadi) * [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/#post-15875405) * The message “HTTPS-Only Mode Alert” is only displayed by the Firefox browser if the HTTPS-Only-Mode is activated in its normal window and you call a page without SSL. By default, this mode is (still) disabled. In the private window of the browser it is enabled by default and leads there together with another setting to an automatic redirection to the SSL web. * I.e. if you open your page without SSL in a normal Firefox window, you will not be redirected. In a private window, however, you will be redirected. See: [https://support.mozilla.org/en-US/kb/https-only-prefs](https://support.mozilla.org/en-US/kb/https-only-prefs) * If this suddenly happens to you, it could be that some security tool on your computer has adjusted the settings of your Firefox profile accordingly. * Solution would be that you store a forwarding to the SSL web, which I would recommend anyway. Many security and SEO plugins provide a check mark for this. But you can also solve it yourself by an entry in the .htaccess file. * Thread Starter [alymcf](https://wordpress.org/support/users/alymcf/) * (@alymcf) * [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/#post-15875462) * Thanks George and Threadi, I can’t seem to find a place in Jetpack or Wordfence to force to https. Is editing htaccess the way to go then, and if so, can you point me toward a resource for editing? * Moderator [threadi](https://wordpress.org/support/users/threadi/) * (@threadi) * [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/#post-15875466) * Take a look here: [https://kinsta.com/knowledgebase/redirect-http-to-https/#http-to-https-apache](https://kinsta.com/knowledgebase/redirect-http-to-https/#http-to-https-apache) * Thread Starter [alymcf](https://wordpress.org/support/users/alymcf/) * (@alymcf) * [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/#post-15875481) * Ha! Well when I went to login to my webhost to edit, I saw the “Enforce SSL” selection and enabled it. Hopefully that will do the trick! Thanks, Alyssa - This reply was modified 3 years, 10 months ago by [alymcf](https://wordpress.org/support/users/alymcf/). * Moderator [threadi](https://wordpress.org/support/users/threadi/) * (@threadi) * [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/#post-15875503) * This is, of course, the simplest solution. When I call the page I am also redirected in a normal browser now. You can set the topic to solved if it also works for you. Viewing 6 replies - 1 through 6 (of 6 total) The topic ‘HTTPS-Only Mode Alert’ is closed to new replies. * In: [Fixing WordPress](https://wordpress.org/support/forum/how-to-and-troubleshooting/) * 6 replies * 3 participants * Last reply from: [threadi](https://wordpress.org/support/users/threadi/) * Last activity: [3 years, 10 months ago](https://wordpress.org/support/topic/https-only-mode-alert/#post-15875503) * Status: resolved ## Topics ### Topics with no replies ### Non-support topics ### Resolved topics ### Unresolved topics ### All topics