Enable Strict Transport Security on IIS

The following is a guide to enable Strict Transport Security on IIS (Internet Information Server).

Open up IIS Manager and navigate to the the Server Name

Select HTTP Responce

Click on Add, and enter the values as follows

Click ok and then click on the server name again, select the restart option from the actions pane.

You server should now pass Qualys SSL Test for Strict Transport Security.