Webdev here but this http/https stuff is basically a complete blind spot.
The site in question is http://amygalbraith.com and i do not want to append “www” to the URL because we have significant SEO invested in the “naked” root. This is a paid account already so apparently there’s a non-domain-specific certificate associated with the domain right now. I’ve checked out the “how to set up https” article and it basically just says to set the Crypto > SSL setting to"strict" and the force traffic to use https instead of http. When I change those settings though, the site shows a “your connection is not secure” error.
I assume there’s some down time when changing these settings, but I don’t want to switch them at 11pm and leave them overnight if there’s something else I have to do that I’m not aware of. It is a live site that ranks highly for the keywords it’s optimized for so I want to limit any downtime to the absolute minimum.
Can anyone help with further context or instruction?
Hosting is with Dreamhost
DNS is managed by Cloudflare
CNAMEs set up for both www and non-www