amolari
Jan 04, 2016Cirrostratus
HSTS and APM (ssllabs)
hi
trying to achieve a grade a+ with ssllabs for my VS that have an Access Policy bound.
I'm running v12 and use the HSTS setting in the HTTP profile.
Testing my website with SSLLabs, I do not get it to see the HSTS functionality. This, because the 302 redirect to /my.policy response doesn't contains the HSTS header.
Has F5 overseen this use case? (I haven't seen any known issue about it on AskF5)
Anyone can advice a workaround?
Thanks
Alex