Configure HSTS for an application
The HTTP strict transport security (HSTS) web security policy mechanism helps to protect websites against attacks by forcing users to communicate with servers through HTTPS only. When users send HTTP requests to the server, it responds with a
Strict-Transport-Securityresponse header for a length of time specified in seconds. In the response header this length of time is depicted as the
- Log in to the Enterprise Application Access (EAA) management portal
From the top menu bar click
The Application page appears.
- Locate the application card you wish to configure advanced settings for.
- Click .
- In the HTTP Strict Transport Security (HSTS) field, enter a length of time in seconds.
- Click Save.
Deploy the application