VA on SCCM Servers after enabling the following, i am unable to push down patches.
Hi will you be able to assist me with the following VA found on my SCCM servers:
1) Missing or Permissive Content-Security-Policy frame-ancestors HTTP Response Header
Solution: Set a non-permissive Content-Security-Policy frame-ancestors header for all requested resources.
2) HTTP Methods Allowed (per directory)
Solution: Ensure Insecure HTTP Methods such as OPTIONS, TRACE, DELETE, PUT and HEAD are not supported.
3) HSTS Missing From HTTPS Server
Solution: Configure the remote web server to use HSTS.
4) Missing or Permissive X-Frame-Options HTTP Response Header
Solution: Set a properly configured X-Frame-Options header for all requested resources.
Please advise why it will affect SCCM functionality?
Hi will you be able to assist me with the following VA found on my SCCM servers:
1) Missing or Permissive Content-Security-Policy frame-ancestors HTTP Response Header
Solution: Set a non-permissive Content-Security-Policy frame-ancestors header for all requested resources.
2) HTTP Methods Allowed (per directory)
Solution: Ensure Insecure HTTP Methods such as OPTIONS, TRACE, DELETE, PUT and HEAD are not supported.
3) HSTS Missing From HTTPS Server
Solution: Configure the remote web server to use HSTS.
4) Missing or Permissive X-Frame-Options HTTP Response Header
Solution: Set a properly configured X-Frame-Options header for all requested resources.
Please advise why it will affect SCCM functionality?
