Skip to main content
Start a Conversation

Unsolved

M

Mikakaka

1 Rookie

 • 

4 Posts

275

August 8th, 2024 10:23

Configure the remote web server to use HSTS in idrac8

Hi

I have a idrac8 which scanned a vulnerability: Configure the remote web server to use HSTS.

But I have checked the idrac firmware version and BIOS version are all the latest.

And in idrac page, Network>Services>Web server

enabled

TLS Protocol is 1.2 only.

Is there any other solution that I can enable HSTS in idrac8?

BR//Mika

2 people also have this problem

Mikakaka

1 Rookie

 • 

4 Posts

August 27th, 2024 08:27

I checked the “HostHeaderCheck:Enabled” , is there anyone who can help?

ajg002

1 Rookie

 • 

1 Message

October 31st, 2024 14:30

Any updates on this? I am seeing the same issue. 

Travis-Stacy

1 Rookie

 • 

5 Posts

November 14th, 2024 14:22

Hi Mika,

It sounds like you're on the right track by ensuring your iDRAC firmware and BIOS are up to date and that you've configured the web server settings correctly. In some cases, enabling HSTS (HTTP Strict Transport Security) may not be a direct feature in iDRAC8, but ensuring that the web server is properly configured to support secure HTTPS traffic is crucial.

You might want to verify that your server is responding correctly to HTTPS requests and if any additional HTTP headers for security need to be added, particularly for enforcing HSTS. If you're still facing difficulties, I recommend checking the detailed documentation or community forums that specialize in iDRAC settings for more specific solutions.

Best of luck with your setup!

Was this post helpful?

View All

No Events found!

Top