Microsoft KB Archive Search

Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

  1. Home
  2. Add a header to HTTP response over SIP TLS channel for HSTS compliance in Lync Server 2013

Add a header to HTTP response over SIP TLS channel for HSTS compliance in Lync Server 2013

View products that this article applies to.

Summary

Microsoft Lync Server 2013 provides minimal support for HTTP clients that incorrectly connect to a SIP listening port because the Lync Server uses port 443 for client connections in the service topologies. After you apply this update, the Lync Server will include a Strict-Transport-Security header in the path where it returns any HTTP response and the underlying connection is TLS.

Note HTTP Strict Transport Security (HSTS) is an Internet Engineering Task Force (IETF) standard-compliant security feature in the header to help users connect to secure sites in a secure way, and prevent some attacks.

↑ Back to the top

How to get this update

To get this update, install the July 2018 cumulative update 5.0.8308.1001 for Lync Server 2013, Front End Server and Edge Server.

↑ Back to the top

Keywords: kb, kbfix, kbqfe, kbsurveynew, kbexpertiseadvanced, Strict-Transport-Security header

↑ Back to the top

Article Info
Article ID : 4339732
Revision : 9
Created on : 7/4/2018
Published on : 7/9/2018
Exists online : False
Views : 218