Problem Statement

Enable HTTP Strict Transport Security (HSTS) on the foreman-proxy daemon in Red Hat Satellite. Currently, security scanners flag it as non-compliant, creating issues with security exceptions. Enabling HSTS will improve compliance and reduce the need for variances, enhancing user experience in enterprise environments.

User Experience & Workflow

End-State: Foreman-proxy enforces HSTS, resolving compliance issues.

Requirements

A setting to enable HSTS on the foreman-proxy daemon

Business Impact

Without HSTS, security scanners will continue to flag non-compliance, complicating security exception processes and impacting enterprise security posture and efficiency.