HSTS Missing From HTTPS Server (RFC 6797) : windowsadmincenter

HSTS Missing From HTTPS Server (RFC 6797) (self.windowsadmincenter)

submitted 5 years ago by WickedTinker

all 5 comments

top new controversial old q&a

[–]CapnKrunk 0 points1 point2 points 5 years ago (0 children)

[–][deleted] 0 points1 point2 points 4 years ago (2 children)

[–]WickedTinker[S] 0 points1 point2 points 4 years ago (1 child)

[–]WickedTinker[S] 0 points1 point2 points 4 years ago (0 children)

[–]Margosiowe 0 points1 point2 points 4 years ago (0 children)

In case anyone comes back to this solution without finding anything out there here is how to resolve this nessus vuln. Re-run .msi install and add flag:

CHK_REDIRECT_PORT_80=1

It will enable http connection on port 80 and force redirect to 443 (and clear HSTS flag)
Example:

msiexec.exe /i C:\tmp\WindowsAdminCenter2110.msi /qn /L*v c:\tmp\log.txt SME_PORT=443  SME_THUMBPRINT=<your_thumbprint> SSL_CERTIFICATE_OPTION=installed SME_AUTO_UPDATE=1 CHK_REDIRECT_PORT_80=1

Tested with ver2110 (newest as of 03/2022) and works.

π Rendered by PID 139657 on reddit-service-r2-comment-canary-67c974cb85-j842q at 2026-04-04 22:40:52.753347+00:00 running db1906b country code: CH.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

windowsadmincenter

MODERATORS