I want my WPMU site to be SSL-only. The first thing I did was (in wp-config.php)

define('FORCE_SSL_ADMIN', true);

Then I changed some strings in wp_options (home, siteurl, fileuplaod_url) from http://url to https://url. For this blog, everything works fine. But whenever I create a new blog, those values (home, siteurl, fileuplaod_url) start with http, not https. My question: what do I have to change so that WPMU creates new blogs with https?


  • drmike
    • DEV MAN’s Mascot

    What specifically have you done to obtain ssl? Are you trying to just have the admin be secure or the public side as well? What hosting environment are you using? (ie CPanel? DA?)

    There is a plugin for ssl on the admin side:

    Also give this a read:

    edit: The feature I believe is only for the admin side as well:

  • bamf
    • Design Lord, Child of Thor

    I've had success with securing SSL admin logins without the use of a plugin
    or modifying my wp-config file by using my .htaccess file.

    Here's what worked for me.

    RewriteEngine On
    RewriteBase /
    RewriteRule ^index\.php$ - [L]

    #Force SSL on
    RewriteCond %{HTTP_HOST} ^my\.domain\.com$ [NC]
    RewriteCond %{HTTPS} off
    RewriteRule .* https://%{HTTP_HOST}%{REQUEST_URI}

    # uploaded files
    RewriteRule ^([_0-9a-zA-Z-]+/)?files/(.+) wp-includes/ms-files.php?file=$2 [L]
    RewriteRule ^(.*/)?sitemap.xml wp-content/sitemap.php [L]

    # add a trailing slash to /wp-admin
    RewriteRule ^([_0-9a-zA-Z-]+/)?wp-admin$ $1wp-admin/ [R=301,L]

    RewriteCond %{REQUEST_FILENAME} -f [OR]
    RewriteCond %{REQUEST_FILENAME} -d
    RewriteRule ^ - [L]
    RewriteRule ^([_0-9a-zA-Z-]+/)?(wp-(content|admin|includes).*) $2 [L]
    RewriteRule ^([_0-9a-zA-Z-]+/)?(.*\.php)$ $2 [L]
    RewriteRule . index.php [L]

Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.