Recommended SSL Configuration

Recommended SSL Configuration

By default, all sites onboarded to Sense Defence are enabled with standard recommended security standards.  There are no additional configurations needed to get A+ rating in Qualys SSL labs. Howevere it is recommended to configure HSTS settings as below.

Navigate to Applications > SSL > Configuration
Enable HTTP Strict Transport Security (HSTS)
Click on HSTS Settings and modify the configuration as below.
  1. Maximum Age Header : 6 Months (Recommended)
  2. Include Sub Domains - Yes
  3. Preload- Yes
  4. No-Sniff header - Yes
Click on Save Configuration and make sure Apply Configuration.




Scan the website and result will look like below.



You can test your onboarded site SSL status here

    • Related Articles

    • SSL Configuration for Websites

      It is very important to enable SSL certificate for security and performance. Sense Defence made it easy to deploy SSL certificates through WAF dashboard. Follow the steps below to enable SSL/TLS protection for your application. Select SSL Settings ...

    • Onboarding a Site to Sense Defence WAF

      Sense Defence’s Web Application Firewall (WAF) offers both security and acceleration at the web application level. To begin the process of securing and speeding up a web application, a “site” must be added to a Sense Defence customer organisation. ...

    • Onboarding Site to Sense Defence WAF

      Sense Defence’s Web Application Firewall (WAF) offers both security and acceleration at the web application level. To begin the process of securing and speeding up a web application, a “site” must be added to a Sense Defence customer organisation. ...

    • General WAF Configuration

      Sense Defence WAF is a layered WAF engine which prioritises and detects malicious attacks in different ways. General Settings In this section, WAF can be enabled/disabled 'globally' or enable/disable WAF engines individually. Customers can choose ...

    • Redirect Application from 'non-www' to 'www'

      Redirecting application from non-www URL to www URL is quite simple in Sense Defence. Navigate to 'Application' tab Select 'SSL' from the left side menu Navigate to 'Configuration' tab Make sure you have select the site you want to configure ...