Forum Discussion
Exchange 2019 owa
Hi guys, we security scanned our owa site and gotten the result Insecure HTTPS redirect pattern, reference below, is there a way to change the owa redirection end page to 301 instead of 302 via LB?
https://support.securityscorecard.com/hc/en-us/articles/360058513252-Insecure-HTTPS-redirect-pattern
2 Replies
Depends on where the redirection takes place - have you configured it in IIS/Exchange, or load balancer / application delivery controller, etc.
If you configured IIS/Exchange to perform the redirect, this might help:
https://learn.microsoft.com/exchange/plan-and-deploy/post-installation-tasks/security-best-practices/configure-http-strict-transport-security-in-exchange-server?view=exchserver-2019#how-exchange-server-handles-http-connections- hi, the redirection were configured on the LB, load balancer
