When is SSL required when transacting data online?

While an SSL certificate isn’t full required (because within Magento you can submit orders without an SSL, or transact orders offline) all the time, SSL is ideally used when sending sensitive information over the network.

This could be customer data, shipping/payment information and credit card numbers, expiration and CVV number.  Images, scripts and the normal shopping process (catalog, products, homepage) do not need to be secure.

To read more about how to configure an SSL certificate with Magento you can read here


The private SSL certificate is an important upgrade to your website. The basic function of an SSL is to encrypt all communication between the browser and the server, ensuring that all data goes through a secure (HTTPS) connection. An SSL certificate is a necessity when you want to operate an online shop and process the sensitive customers data through your software. It helps you gain your clients’ trust and increase your web site’s search engines rank. You can purchase a private SSL from the SiteGround SSL Certificate page.

To configure Magento to work with your SSL certificate, first you need to login to your admin area and go toSystem -> Configuration.

Next, click on the Web link under the General tab in your left menu.

On this page, you will see many options that you can configure. However, focus only on the Secure tab. In it, make sure that you’ve set the Use Secure URLs in Frontend and Use Secure URLs in Admin to yes. Doing this will make your Magento application work with SSL for those parts of your site.

That’s it, your Magento store is now configured to work over SSL!