Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
22931
Views
90
Helpful
16
Replies

HTTP Strict Transport Security on ASA

Go to solution
gchevalley
Level 1
Level 1

‎01-26-2017 09:49 AM

Our PCI scan vendor has recently began flagging the outside interfaces of all of our firewalls that have AnyConnect enabled on them.  Does anyone know if there is a way to enable HSTS on AnyConnect / WebVPN or the outside interface?

8 people had this problem
Labels:
0 Helpful
16 Replies 16

Go to solution
vse
Level 1
Level 1

‎04-23-2020 03:05 AM

webvpn
 enable outside
 hsts
  enable
  max-age 31536000
  include-sub-domains
  no preload

Go to solution
gunnar.gud
Level 1
Level 1

‎02-02-2022 08:02 AM

Is there any way to prevent users from bypassing security issues (does HSTS work on Anyconnect itself?), such as cert errors or tls errors?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents