Hi Community,
To further enhance the security of my system, I'd like to activate HSTS in IIS.
My initial tests look good after enabling the option.
Is there anything I should pay attention to when enabling this for my dataminer server?
Ive Herreman [SLC] [DevOps Catalyst] Selected answer as best 25th February 2022
Hi Ive,
Make sure to verify the header is actually sent to clients, on DataMiner versions below 10.1.12 and 10.2.0 custom HTTP headers were wiped by the default web.config of DataMiner. This should be fixed since release note 31090.
Other than this I do not expect any issues and encourage this extra security measure.
Ive Herreman [SLC] [DevOps Catalyst] Selected answer as best 25th February 2022