Knowledge Base

How to enable HTTP Strict-Transport-Security (HSTS) and OCSP Stapling for all domains in Plesk?

 
clidomainshttpinterfacekcs

Question

How to enable the HTTP Strict-Transport-Security (HSTS) and OCSP stapling for all domains automatically in Plesk?

Answer

Currently, there is no such functionality in Plesk.

If you would like to see this feature in Plesk, please vote for it on the Plesk UserVoice portal.

As a workaround,  it’s possible to automatically enable HSTS for all domains via CLI:

Note: as of now only HTTP Strict-Transport-Security (HSTS) could be enabled for all domains via CLI. OCSP stapling needs to be enabled manually for each domain via Plesk interface as mentioned in this article

  1. Log in to the server via SSH.
  2. Run the command below to generate a list of all domains:

    # plesk bin site –list > domains.txt

  3. Execute the script below to enable HSTS for all domains from the domains.txt file: 

    # for i in `cat domains.txt`; do plesk ext sslit –hsts -enable -domain $i; done

There is a feature request #EXTSSLIT-1569 for RnD to enable OCSP stapling via CLI.

Read the full article
Related Posts
Knowledge Base

Industry
Partners

industry-partner_ALIBABA
industry-partner_GOOGLEPARTNER
industry-partner_MICROSOFT
industry-partner_REDHAT-r2
industry-partner_ALIBABA
industry-partner_AUTOMATTIC
industry-partner_AWS
industry-partner_DIGITALOCEAN
industry-partner_SCALEWAY

Follow us:

Facebook Twitter Linkedin Youtube Github

© 2021 Plesk International GmbH. All rights reserved. Plesk and the Plesk logo are trademarks of Plesk International GmbH.

Managed with 💙  with Plesk WordPress Toolkit

Search
Generic filters
Exact matches only
Search in title
Search in content
Search in excerpt