As the CMG is a managed service, there is no supported way for you to deal with this. You should do one (or all) of the following:
- File an item using the in-console feedback system
- File a UserVoice item
- Open a support case
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi Support,
It has been flagged by our security team that the Azure VM provisioned as part of the Cloud Management Gateway does not have 'HTTP Strict Transport Security' (HSTS) set. This has been flagged as a vulnerability.
How do we go about mitigating this?
Regards.
As the CMG is a managed service, there is no supported way for you to deal with this. You should do one (or all) of the following: