You are currently reviewing an older revision of this page.

DRAFT KB-XXXX HSTS FAQ

Q: Does Appian support HSTS (HTTP Strict Transport Security) headers?

A: Yes.

Q: How can I enable the HSTS header on Appian Cloud sites?

A: This is enabled by default on Appian Cloud sites.

Q: How can I enable HSTS on Appian on-premise environments?

A: This needs to be enabled on the web server that is being used with Appian. Please refer to the documentation of the respective web server to find out more on how to implement this feature.

Q: How do I confirm if my Appian site is enabled with the HSTS header?

A: You can use the browser network tool as seen in the following image to confirm whether HSTS is being used:

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: July 2018