How to enable HTTP Strict Transport Security (HSTS) Header on Authentication Manager Prime Self-Service Portal
Originally Published: 2025-04-07
Article Number
Applies To
RSA Product Set: SecurID Access
RSA Product/Service Type: SecurID Access Prime
Issue
Authentication Manager Prime Self-Service Portal is missing the HTTP Strict Transport Security (HSTS) Header. This article walks through on enabling HSTS header for the AM Prime Self-Service Portal.
Tasks
Resolution
- HSTS is configurable in ssp.properties .
- Make a copy of ssp.properties located under <Primekit_Installation_Directory>/configs/ssp/config
set "enable.hsts.filter" parameter in the ssp.properties to true:
enable.hsts.filter=true- Make a copy of the headerConfig.xml under <Primekit_Installation_Directory>/configs/ssp/config
- Modify 'headerConfig.xml' as follows:
<?xml version="1.0" encoding="UTF-8"?>
<header>
<map key="Strict-Transport-Security" value="max-age=31536000; includeSubDomains"/>
<map key="Referrer-Policy" value="no-referrer"/>
</header>- Restart SSP service
Related Articles
Determining an existing RSA Prime version Number of Views Prime kit tomcat.pid: Permission denied error when restarting services for RSA Authentication Manager Prime Kit Number of Views "Authentication station status was 9" error when accessing RSA Authentication Manager Prime Self Service Portal (SSP) with… Number of Views Mandatory Update: DigiCert Certificate Configuration for RSA Prime (Required by October 06, 2025 for Cloud Access Service … Number of Views How to enable the Java verbose class logging option for RSA Identity Governance & Lifecycle Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.9 Release Notes (January 2026) Artifacts to gather in RSA Identity Governance & Lifecycle RSA Governance & Lifecycle 8.0.0 Administrators Guide RSA Governance & Lifecycle 8.0.0 Installation Guide
Don't see what you're looking for?
