How to Enable HTTP Strict Transport Security (HSTS) within a Secure Global Desktop Deployment
(Doc ID 2098067.1)
Last updated on OCTOBER 30, 2018
Applies to:Oracle Secure Global Desktop - Version 5.2 and later
Oracle iPlanet Web Server - Version 7.0 to 7.0 [Release 7.0]
Information in this document applies to any platform.
HTTP Strict Transport Security (HSTS) is a web security policy designed to help secure HTTPS web servers against downgrade attacks. SGD Administrators may be asked to enable this additional level of server hardening in production Secure Global Desktop deployments to meet site auditing requirements.
This document provides a quick overview of HSTS, and will provide instructions for enabling the technology within SGD.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document
|Enabling HSTS within the SGD Server|
|Enabling HSTS within the SGD Gateway|