Everyone is looking to keep their information more secure. Luckily, Secure Socket Layer (SSL) is a security technology that ensures all data passed between the web server and the browser remains private.
This article explains how to ensure all visitors see the HTTPS version of your landing pages.
SSL is available on all paid Unbounce plans. Whenever you connect a custom domain to Unbounce using a CNAME record, Unbounce provisions an SSL certificate for the domain.
If you add a domain using our WordPress plugin, you will need to provide your own SSL certificate. See this article for more details: Connecting Your Domain Using the WordPress Plugin
You also have the option to connect your pages to our ubpages.com domain, which is already SSL secure. This domain is available for use on all Launch, Build, Experiment, Optimize, Accelerate, and Concierge plans. You can read more about our ubpages.com domain here: Adding a Custom ubpages.com Domain.
Why Should You Enable SSL?
Once Unbounce provisions the SSL certificate, visitors can access secure versions of any published pages on the domain. Page visitors like to see secure HTTPS versions of your landing pages because it ensures them that they are visiting a domain where any information they share will exist on a secure & encrypted server.
When visitors see a green padlock and an HTTPS web address in the URL field, it's a visual cue that the landing page has enhanced security:
Secure versions include the HTTPS prefix, e.g, https://mydomain.com. Rest assured, the HTTP version of your domain (http://mydomain.com) and corresponding landing page(s), will still be available as well.
Enabling SSL on Your Domain
While Unbounce provisions SSL certificates automatically, you will need to enable it for all visitors. If you would like to ensure the secured ('https') version of your pages render for all your visitors, follow the steps below:
- Log into your Unbounce account.
- From the All Pages section of your account, navigate to the Domains tab on the left-hand side of the page.
- Toggle the Force' HTTPS' on all non-WordPress domains button on the top-right corner of the page:
You're all set! Give the SSL a few moments to propagate, and your pages will load as SSL-secure for all visitors. If visitors use the HTTP prefix, Unbounce will redirect them to the secured HTTPS version.
If you have some trouble seeing these changes right away, refresh your browser cache & history, or test your page in an Incognito browser window.
What to Do if You See an ”Error Issuing Certificate” Error
After adding a domain to Unbounce, Unbounce will attempt to provision a certificate. If it’s not possible, you will see the following domain status:
Most often, we are unable to provision SSL certificates due to incorrect DNS configurations.
As a first troubleshooting step, we recommend double-checking that you've set up the CNAME record as described here within our documentation to confirm there are no conflicting records in the DNS settings.
A second troubleshooting step we recommend is to utilize Let's Debug, which is a useful debugging tool that gives you insight into what might be causing the SSL certificate to fail.
*IMPORTANT** If your SSL certificate fails, please note that there is a weekly limit of five SSL certificates per week. If you add a domain and see the “Error Issuing Certificate” status, you can contact our Support team via email.
Make sure not to remove and re-add the domain multiple times because once the domain reaches the weekly limit, you’ll need to wait a week before we can attempt a new certificate.
Working with Proxies
In short, we do not support proxies, since our spam filter may block legitimate leads by marking them as spam if a proxy is in place.
This is because some proxies work by recording leads under the same IP address.
If Unbounce's spam filter detects multiple submissions to a form from the same IP address, we will detect it as spam. So, please remove any proxies so Unbounce's spam filter won't block leads from your landing page.
Frequently Asked Questions
Why can't I enable SSL on unbouncepages.com domains?
The unbouncepages.com domain is not SSL-secure, as it is only intended for testing functionality on live pages. This domain should not be used for any public marketing campaigns.
At this time, you can enable SSL with:
- your own custom domain, or
- with Unbounce's built-in ubpages.com domain
To quickly connect your pages to a domain that's SSL secure, check out our documentation on the ubpages.com domain: Adding a Custom ubpages.com Domain.
Alternatively, follow these steps to connect your custom domain to Unbounce: Connecting your Domain in Unbounce.
Can I use my own SSL Proxy, such as Cloudflare?
Certain SSL proxies can be quite restrictive, as they can block your landing page content from loading within the browser, or disrupt the CNAME configuration for your custom domain. It's best to remove any custom SSL proxies if possible.
As for Cloudflare, this works great as a domain provider! But when the Cloudfare proxy is enabled, it can block and disrupt Unbounce's CNAME record detection, which can prevent SSL enabling. Always ensure to remove the Cloudflare proxy.