Start a conversation

How do I add HTTP Strict Transport Security (HSTS) to my website?

Open the Internet Information Services (IIS) Manager and click on the website. Double click HTTP Response Headers and add in a new header named "Strict-Transport-Security" The recommend value is "max-age=31536000; includeSubDomains" however, you can customize it as needed.

Choose files or drag and drop files