ALERT! The community will be read-only starting on April 19, 8am Pacific as the migration begins. Read more for important details.
ALERT! The community will be read-only starting on April 19, 8am Pacific as the migration begins.Read more for important details.
This website uses cookies. By continuing to browse or login to this website, you consent to the use of cookies. Learn more.
OK
nkululeko
Micro Focus Frequent Contributor
Micro Focus Frequent Contributor
‎2020-10-29 13:31
366 views

How to Enable HSTS in ESM 7.2

Hi All

How does one enable ESM to use  Strict Transport Security  on port 8443 ?

 

Thanks

 

 

0 Likes
Report Inappropriate Content
2 Replies
Ionut Daniel Mosoiu
Fleet Admiral
Fleet Admiral
‎2020-11-01 22:26

Hello,

 

ESM is always communication on 8443 SSL and is not using unencrypted communication.

Can you please what you relay want to achieve and what exactly did you seen ?

 

Best Regards,

 

Daniel

0 Likes
Report Inappropriate Content
LewisJ
Micro Focus Frequent Contributor
Micro Focus Frequent Contributor
‎2020-12-14 04:14

Hi @nkululeko,

you can enable HSTS in the latest version of Arcsight ESM 7.4 by adding
"hsts.enabled=true"

to your server.properties files under (if default) /opt/arcsight/manager/config

If you search previous versions of the Arcsight ESM Administrators guide you should be able to find if earlier versions support it.

Also be aware that, HSTS will not work with Self-signed certificates, and is primarily aimed at environments that have CA issued certificates, not the default ESM generated self signed ones.
0 Likes
Report Inappropriate Content
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.