Before setting up Secure Sockets Layer, also known as SSL, for dedicated click tracking, you need to set up standard click tracking. Please review our guide to setting up dedicated click tracking to do so. After completing this crucial first step, the three most common ways that people then achieve SSL click tracking is via:
While these are not your only options, this article will run through how to set this up via these three main methods.
First, log into your Cloudflare account. Then head to the DNS section.
Here, you will see that both click tracking CNAME records are set to have the DNS proxy off, as signified by the gray cloud icon. Click the proxy toggle to the right of the page under Proxy status for the branding subdomain record.
In the following example, the branding subdomain is “trk.” This is also the default we recommend when setting up dedicated click tracking.
Next, head to the Page Rules section of your Cloudflare account:
Click the Create Page Rule button on the right side of the page.
Create a page rule for the branding subdomain, iterating upon what was discussed above — by default, we recommend “trk” as the subdomain. However, if you used a different subdomain, then we recommend reflecting those changes in the page rule as well.
When creating the page rule, make the settings enforce SSL as Full.
First, navigate to the Cloudfront Management Portal. Then, click Create Distribution. This will open a page with various settings. We will walk through each of these sections one by one.
The main settings you need to adjust in Origin Settings are the following:
- Origin Domain Name: SendGrid.net
- Origin Protocol Policy: HTTPS Only
Default Cache Behavior Settings
The main settings you need to adjust in the Default Cache Behavior Settings are:
- Cache and origin request settings: Legacy Cache Settings
- Cache Based on Selected Header Requests: All
- Forward Cookies: All
- Query String Forwarding and Caching: Forward all, cache based on all
The main settings to adjust in the Distribution Settings are as follows:
- Alternate Domain Names (CNAMEs): trk.example.com
- SSL Certificate: Custom SSL Certificate
Once this is set up, click Create Distribution. At this point, the Cloudfront distribution will be ready to go and you are in the last stretch of setting up SSL for dedicated click tracking. The last thing to do is point your subdomain to this distribution.
In your DNS provider, create a CNAME record pointing to the domain name you see in the distribution overview.
First, navigate to Fastly. If this is your first time logging in, select Get Started and then Create Service. However, if you’re logging in and already use Fastly for other services, simply click Create Service in the upper right corner of your screen.
Once you create the service, you will be brought to a page that will ask for your domain. Type in both your subdomain and domain. Make sure that you use the proper subdomain and domain that you used to set up dedicated click tracking prior.
After you add your domain, head to the Hosts section and add Sendgrid.net as the host. It’s important that the port is 443 for SSL.
As iterated above, the three options outlined in this article are not the only options for setting up SSL for dedicated click tracking; however, they are the more common solutions. Regardless of how you set up SSL click tracking, after doing so, create a ticket in Klaviyo by reaching out to our support team. Please note that chat support is not able to assist with these tickets.