SSL Labs checker shows that Forward Secrecy is not supported




  • Avatar
    Jorge Batres

    Hi, I have followed these exact instructions but SSLLabs does not show Strict Transport Security (HSTS) for my domain which already has an "A".

    I use Onyx Version 17.0.17 Update #14 in a linux RHEL 6.8.

    Any ideas?

  • Avatar
    Vitaly Zhidkov

    @Jorge, I see that you have configured everything correctly:

    # curl -s -D- | grep Strict
    Strict-Transport-Security: max-age=31536000;

    SSLLabs test returns the A+ score and shows the same - HSTS is configured properly.

  • Avatar
    Jorge Batres

    Thank you Vitaly, everything works great now!

Please sign in to leave a comment.

Have more questions? Submit a request