Table of Contents:

Does Appian support HSTS (HTTP Strict Transport Security) headers?


How can I enable the HSTS header on Appian Cloud sites?

This is enabled by default on Appian Cloud sites.

How can I enable HSTS on Appian self-managed environments?

This needs to be enabled on the web server that is being used with Appian. Refer to the documentation of the respective web server to find out more on how to implement this feature.

How do I confirm if my Appian site is enabled with the HSTS header?

Use the browser network tool as seen in the following image to confirm whether HSTS is being used:

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: August 2018