/
How to Enable HSTS for IIS Manager

How to Enable HSTS for IIS Manager

HTTP Strict Transport Security (HSTS) configurations are handled via the Internet Information Services (IIS) Manager. Complete the following steps in IIS Manager to enable HSTS:

  1. From the Start menu, search and select the IIS Manager (InetMgr.exe)

Starting IIS Manager (Click image to enlarge)

 

  1. Once IIS Manager is loaded, navigate to the Sites directory located in the Connections panel (left panel):

Navigate to the Site directory - left panel (Click to enlarge)

 

  1. From the Sites directory, locate and select the Default Web Sites:

Navigate to Default Web Site (Click image to enlarge)

 

  1. Under the Actions panel (right-side), Click HSTS under the Configure section:

Selecting HSTS under Configure (Click image to enlarge)

 

  1. Once the HSTS modal is loaded, make sure the Enable checkbox is checked:

Check Enable Checkbox (Click image to enlarge)

 

  1. Once Enable is checked, set Max-Age to the recommended value, 31536000, which is equivalent to the amount of seconds in a year.

Setting the Max-Age Value (Click image to enlarge)

 

  1. Click OK to complete and activate the configuration:

Finalize HSTS Enabling Process (Click image to enlarge)