Strict transport security - SmartPlant Foundation - 2019 (10.0) - Installation

Infrastructure Planning and Deployment for SmartPlant Foundation

PPMProduct
SmartPlant Foundation
PPMCategory_custom
Installation & Upgrade
SPFVersion_custom
10

Best practice for an application server exposed to the internet dictates that the server should be configured to communicate over HTTPS only and that any caller attempting to connect over HTTP is redirected to HTTPS.

To configure this behavior, the following section should be added to the application server and authorization server’s web.config files.

The IIS rewrite module needs to be enabled in order for this configuration to be effective.