Release : 4.3
Component : Process Automation
HSTS is enabled in ITPAM and has been since approximately version 3.1.
Here is how to verify this:
Using Internet Explorer or Chrome, go to the ITPAM login page.
Hit "F12" on the keyboard to open the developers' console.
Select the "Network" tab.
If there is nothing loaded yet, hit "CTRL+R" and you will now see the console populated.
From there select an element, for example, r7Login.css.
In the headers will be a "response headers" section, and you will see listed in that:
This tells you that HSTS is enabled in ITPAM.