How to verify whether HTTP Strict Transport Security (HTTPS) is installed
Last Modified: 2023-08-08 06:57:37 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
After December 1, 2024, please log in to the Thrive Portal for support, knowledge articles, tools, and downloads. For information about using the Thrive Portal, view the Trellix Thrive Portal User Guide.
How to verify whether HTTP Strict Transport Security (HTTPS) is installed
Technical Articles ID:
KB93817
Last Modified: 2023-08-08 06:57:37 Etc/GMT Environment
ePolicy Orchestrator (ePO) 5.10.0 Updates 1–8
Problem
Vulnerability scanners for Solution
Upgrade to ePO 5.10 Update 9 or later. As stated in the ePO 5.10 Update 9 Release Notes, EPO-8770 - Added a new HSTS header to ePO is a resolved issue. Option 1 - Follow the steps below to verify that the HSTS header is enabled using ePO:
Option 2 - To verify whether the HSTS header is enabled using the Output X-FRAME-OPTIONS: SAMEORIGIN Cache-Control: no-cache,no-store Pragma: no-cache Expires: Thu, 08 Jul 2021 06:09:06 GMT Strict-Transport-Security: max-age=31536000 Content-Language: en Set-Cookie: JSESSIONID=2B2CFA9D95DBC8CBFEDCB627C407EBED.route1; Path=/core; Secure; HttpOnly Content-Type: text/html;charset=UTF-8 Transfer-Encoding: chunked vary: accept-encoding Date: Thu, 08 Jul 2021 06:09:06 GMT Server: Undefined NOTES:
Affected ProductsLanguages:This article is available in the following languages: |
|