For Joomla! 3.x and Joomla! 4.x

In this article, we'll show you why you should switch your website to HTTPS and how to do it for a website managed with the Joomla! content management system.

What is HTTPS?

HTTPS (HyperText Transfer Protocol Secure) is a communication protocol for secure data exchange between a website and end devices (PC, smartphone, etc.). In contrast to HTTP, HTTPS transmits data in an encrypted form. Encryption is performed according to the SSL/TLS standard: HTTP + SSL = HTTPS.

HTTPS-protected connections are displayed with https:// in the address bar of the web browser and are usually additionally marked with a lock symbol.

Why your websites should use HTTPS exclusively

In addition to secure data transfer, HTTPS also ensures that your website remains available in the future. This is because current browsers issue a warning if a website is accessed unencrypted instead of encrypted (i.e. using http:// instead of https://), which can scare visitors away. Browsers may also refuse to display the content altogether.


Before you switch your website to HTTPS, make sure that an SSL certificate is already set up for your domain. Otherwise, your website will not be accessible after the switch. You can learn how to set up an SSL certificate here.

To switch your website to HTTPS:

  • Log in to the administration area (backend) of your Joomla website and select System > Global Configuration from the menu.
  • Switch to the Server tab.
  • Change the setting for Force HTTPS to Entire Site.
  • Click Save & Close.

That's it. Your website is now automatically loaded with HTTPS.