1. Oracle ZFS Storage Appliance Administration Guide, Release OS8.8.x
  2. Configuring the Appliance
  3. Configuring Certificates
  4. HTTP Strict Transport Security

HTTP Strict Transport Security

HTTP Strict Transport Security (HSTS) allows only secure HTTPS connections, and not HTTP connections, for a specified period of time. Before using HSTS, familiarize yourself with HSTS prerequisites, understand browser behavior with HSTS enabled, and install a certificate signed by a certificate authority.

Note:

Failure to keep the certificate valid and appropriate could negate HSTS security advantages or could cause a browser to not connect with the appliance.

To enable HSTS, use the following procedure: Enabling HTTP Strict Transport Security - BUI, CLI