Windows Admin Center 2103 with HSTS (http strict transport)

JCTrell 21 Reputation points
2021-06-24T22:31:43.95+00:00

as anyone performed any actions pertaining to the HSTS vulnerability on Windows Admin Center? No setting(s) that I can find or modify since it's not installed with IIS. 109133-image.png

https://www.tenable.com/plugins/nessus/142960

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,505 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,282 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,746 questions
0 comments No comments
{count} vote

3 answers

Sort by: Most helpful
  1. JCTrell 21 Reputation points
    2021-06-28T17:57:52.59+00:00

    Adding an extension to the server running Windows Admin Center doesn't modify the WAC installation, if I am understanding the sysops article correctly. The WAC server doesn't have IIS installed. The article is stating you can administer IIS on other servers.
    Question: Can we administer WAC with an installation of IIS on Win Server 2019 ?

    1 person found this answer helpful.
    0 comments No comments

  2. Jenny Yan-MSFT 9,326 Reputation points
    2021-06-25T01:52:09.577+00:00

    Hi,

    Per searching, setting up HSTS can be modified in the IIS either via GUI or manual IIS configuration.

    As for windows admin center, to manage the IIS web service, we need to add the extension which covers most functions of the conventional IIS manager but not all.

    Kindly check the details in below link if you are interested in how to add the extension in WAC and setup of HSTS via IIS.
    https://4sysops.com/archives/manage-internet-information-services-iis-using-windows-admin-center-wac/
    https://www.tbs-certificates.co.uk/FAQ/en/hsts-iis.html

    Please note: Information posted in the given link is hosted by a third party. Microsoft does not guarantee the accuracy and effectiveness of information.


    Hope this helps and please help to accept as Answer if the response is useful.

    Thanks,
    Jenny


  3. Carmen Cody 0 Reputation points
    2023-02-14T15:54:17.56+00:00

    @Jenny Yan-MSFT Thank you for your post, that is helpful for administering servers with IIS. What I have is Server Core, with no IIS server. I already have the IIS extension in my WAC.

    Looking at the latest release information for WAC 2110.2, I see that HSTS is enabled by default, so I will just build a new one and go from there. Since as far as I can tell, upgrading does not modify the HSTS.

    https://techcommunity.microsoft.com/t5/windows-admin-center-blog/windows-admin-center-version-2110-2-is-now-in-public-preview/ba-p/3263839

    -Carmen