Hi All,
Can anyone please help me with the below query? Any help is much appreciated.
As a part of our security scan we encountered an issue saying "The remote HTTPS server is not enforcing HTTP strict Transport Security (HSTS). The lack of HSTS allows downgrade attacks, SSL-stripping man-in-the middle attacks, and weakens cookie-hijacking protections." and recommending to configure the remote web server to HSTS.
Did anyone configured HSTS for Dynamics CRM website and any challenges? And also, please let me know if any references on how to configure it.
Thanks in advance.