Prerequisites

WAF supports configuration and protection of HTTPS access to domain names. If your website has not been altered for the HTTPS protocol, you can apply for a DV certificate free of charge in the SSL Certificate Service Console. After the application is approved, you can associate the certificate in the WAF Console; then, you can easily implement access and client connection to the entire website over HTTPS without modifying the real server.

Associating HTTPS Certificate

1. Log in to the WAF Console and select Web Application Firewall > Protection Settings on the left sidebar.
2. On the protection settings page, click Add Domain Name to enter the domain name adding page.
3. In server configuration on the page, select HTTPS. In certificate configuration, click Associate Certificate.
4. Select "Tencent Cloud-hosted Certificate" as the certificate source. Then, WAF will automatically associate an available certificate of the domain name. After the configuration is completed, click Save.
5. Enable forced HTTPS redirect, select the HTTP access protocol above, select "HTTP" as the "HTTPS Origin-pull Method", and set other parameters as needed; then, your website will support HTTPS access.

   To enable forced HTTPS redirect, you need to select both HTTP and HTTPS access protocols.