How to install Wordpress on a Tilaa Cloud VPS

Usually, new WordPress websites are built on a shared web hosting plan. This type of web hosting can be managed easily with little to no technical knowledge. However, as a business grows and traffic increases, the need for more server capacity also arises.

In this article, we’ll show you how easy it is to install a WordPress VPS in just 9 steps with Tilaa. We’ll also put in some extra tips to secure your virtual machine and website.

 

Step 1 – Deploying your VPS server

To get started, you need to set up your VPS through our configurator. With Tilaa you can either choose one of our 3 pre-set packages or you can customize the size of your virtual machine to your specific needs. Which size VPS you require strongly depends on the type of website you’re hosting. If you are planning to manage a single WordPress VPS, then 1 GB to 2 GB of RAM should be sufficient. Don’t worry in case you might need a bigger VPS as your site grows. VPS plans at Tilaa are super flexible and can be changed in the blink of an eye.

 

While configuring your VPS, be sure to select the WordPress appliance under step 2 – select your preferred software

mceclip0.png

 

After the checkout process is finished, your server is instantly configured and can be set up to suit your needs. Tilaa supports the most frequently used open-source appliances via Turnkey. The installation of our appliances is fully automated, so you can start using WordPress within minutes.

 

Step 2 – Point a domain to your VPS

 

As soon as your VPS is set up, you’re able to find all the server details in your dashboard. When you navigate to the network section, you can find the IPv4 address in the format x.x.x.x and also your IPv6 address in the format x:x:x:x:x:x:x:x.

mceclip1.png

You can copy your IPv4 address in any web browser, and you’ll see that your WordPress website is ready to use. The next step is to point a domain to your VPS via the DNS control panel provided by your registrar. At Tilaa, we do not offer the service to purchase a domain name. But with the IPv4 and IPv6 address, you can easily point any owned domain to your VPS.


Step 3 – Check if you are using the latest version of WordPress

 

The next thing to check is if you have the latest version of WordPress installed.

Your VPS is pre-installed with WordPress via Turnkey Linux, which conveniently deploys servers pre-configured with any application.

Just navigate to your WordPress login screen via the IPv4 address link: http://x.x.x.x/wp-admin or via your pointed domain link http://yourdomain.com/wp-admin 

 

mceclip2.pngmceclip3.png

 

You can log in by using the username Admin combined with the password that is given in your Tilaa dashboard. For security’s sake, we will later also show you how to update this password.

 

After you have logged in, you can check your WordPress application and see if it's running on the latest version. You can easily update your WordPress to the latest version.

 

Step 4 – Login to your Webmin dashboard

 

Now that your WordPress is updated, you might want to take some steps to make your virtual machine extra secure. Your VPS is set up with standard ports to access your server, which makes it easier for hackers to get to your data. The following changes can be easily managed through Webmin. This is a management interface that can be accessed via any web browser by using the following link: https://(your IPv4 address):12321 the link should look like this  https://x.x.x.x:12321

 

As soon as you navigate to this URL, you can log in into Webmin using the username root combined with the password that is given in your Tilaa dashboard.

mceclip4.png

Step 5 – Change your standard Root password


The first step is to change the standard password to something which is more secure. In the Webmin sidepanel click on ‘System’ and next on the menu item ‘Change Passwords’. Select root to change your root password.

mceclip5.png

 

When changing the original password, you can check the box ‘Change password in other modules?’. This also makes sure you change your WordPress admin password.

mceclip6.png

 

Step 6 – Configure SSH via Webmin

 

 

Next, you might consider configuring SSH to use a non-standard port for your access. To do this, click on ‘Servers’ in your Webmin sidepanel and go to the menu item ‘SSH server’ and go to the ‘Networking’ options.

mceclip7.png

Under the networking options, you’ll see that the default port is set to 22. You can change this to another value such as 2200 and then click on save.

 

mceclip8.png

 

By changing the port, you also need to update the port settings of your Firewall. To achieve this, click on ‘Networking’ in your Webmin side panel and go to the menu item ‘Linux Firewall’. A screen will open which shows all firewall rules. Click on the rule which states, “If protocol is TCP and destination is port 22”, change the value 22 to 2200.

mceclip9.png

Step 7 – Adding an SSL certificate to your WordPress website

 

For security reasons, it is advised to secure your website with an SSL certificate. Adding the right certificates can also be easily done via the server settings in your Webmin dashboard. By installing an SSL certificate on your WordPress website, a padlock is activated and the HTTPS protocol is used in the address bar of your web browser.

 

You can get your SSL certificate from a Certificate Authority (CA), some examples are Cloudflare (https://www.cloudflare.com/), Lets Encrypt (https://letsencrypt.org/)  or ZeroSSL (https://zerossl.com/). There are several types of certificates also different in terms of pricing. More info on these certificates can be found in a previous blog.

 

After you’ve set up your SSL certificates from your CA, you will end up with 3 different files: ca_bundle.crt, certificate.crt and private.key. The next step is to place these 3 files on your server in the right folder and link them in the SSL server settings.

To achieve this, click on ‘Tools’ in your Webmin side panel and go to the menu item ‘File manager’. Navigate to the folder:

 /etc/ssl/certs/

In this folder, you can place the 3 files.
The next step is to link these files in the server settings of your WordPress Apache server.

To do this, click on ‘Severs’ in your Webmin side panel and go to the menu item ‘Apache Webserver’. Here you will see a list of virtual machines, to change the right settings click on the WordPress virtual server with the port 443:

mceclip10.png

 

A screen will show with the server settings and next you can select the SSL options of this server. Here, you can link the 3 files that you’ve just placed onto your server via the file manager. Also be sure to only check the SSL protocols TLSv1.2 & TLSv1.3.

mceclip11.png

 

After the above changed have been made, be sure to click on save and the SSL settings are configured on your WordPress server.

 

Step 8 – Updating the SSL settings in your wp-config.php file

To finalize the SSL setup, some changes also need to be made to the wp-config.php file. This file contains the base configuration details of your WordPress website and is located in the root of your WordPress file directory.

These changes can also be done in your Webmin dashboard. First locate the wp-config.php file via the file manager. Click on ‘Tools’ in your Webmin side panel and go to the menu item ‘File manager’. Navigate to the folder:

/var/www/wordpress/

Here you will find the file wp-config.php, right-click on the file and click on edit:

mceclip12.png

A text editor will open showing the rules for your Wordpress website. First make sure to change the part for WP_SITEURL & WP_HOME from http:// to https:// . Next to this also add the following code above the “That’s all, stop editing!” line in your wp-config.php file:

define('FORCE_SSL_ADMIN', true);

All changes made to your wp-config.php file should look like this: 

mceclip13.png

 

After these changes be sure to save the file by clicking on the safe icon in the right top corner. Now your SSL settings are finalized.

 

Step 9 – Setting up proper redirects for non-www & http links

 

Now that all security measures have been done you will see that your WordPress website can be accessed via a https protocol. However incoming traffic to non-www or to http URLS also have to be redirected to the right links including https:// . This is something that you can change in the .htaccess File which also can be found in the WordPress folder on your server.

The .htaccess file is a configuration file that’s used by the Apache server. Rules defined in the file will override several settings of server configurations, and it’s often used for cache control, website optimization, URL rewriting, and authorization.

Again in the Webmin dashboard. First locate .htaccess file via the file manager. Click on ‘Tools’ in your Webmin sidepanel and go to the menu item ‘File manager’. Navigate to the folder:

/var/www/wordpress/

mceclip14.png

 

Again, a text editor will open the file. The final thing to do is to paste the following text between # BEGIN WordPress and # END WordPress in this document.

 

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>


Afterwards, save the file, and you can close the Webmin dashboard.

Now, your WordPress VPS is properly set up for usage. Future changes can still be made in the Webmin dashboard for advanced security measures. Logging into WordPress can be done via the normal /wp-admin URL on your SSL secured website domain along with your new password.

 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.

Articles in this section

See more