Strict-Transport-Security HTTP Header missing on port 8443.
search cancel

Strict-Transport-Security HTTP Header missing on port 8443.

book

Article ID: 381726

calendar_today

Updated On:

Products

Network Observability Virtual Network Assurance

Issue/Introduction

After doing a security scan we are seeing the following vulnerability "Strict-Transport-Security HTTP Header missing on port 8443."

Environment

DX NetOps VNA 23.x

Resolution

The following are steps to enable Strict-Transport-Security HTTP Header.

  1. Connect to Jboss CLI -- Go to <VNA_HOME>/wildfly/bin directory. Run the following command "./jboss-cli.sh --connect"
  2. Once after successfully connected to JBOSS CLI. Run the following commands

/subsystem=undertow/configuration=filter/response-header=hsts-header:add(header-name="Strict-Transport-Security",header-value="max-age=31536000;")

/subsystem=undertow/server=default-server/host=default-host/filter-ref=hsts-header:add

Now check the the response and it will have Strict-Transport-Security HTTP Header.

Powered by Wolken Software