Adding custom HTTP response headers - PingFederate

Page created: 15 Jul 2020 |

Page updated: 29 Jan 2021

| 1 min read

Product PingFederate 10.2 Configuration User task Software Deployment Method Product documentation Content Type Administrator Audience

The PingFederate administrative console and runtime server are capable of returning custom HTTP response headers, such as HTTP Strict-Transport-Security (HSTS), to enforce HTTPS-based access and P3P for Microsoft Internet Explorer interoperability.

Edit the response-header-admin-config.xml file or the response-header-runtime-config.xml file, or both, located in the <pf_install>/pingfederate/server/default/data/config-store directory.
Save your changes.
Restart PingFederate.

For a clustered PingFederate environment, perform these steps on the console node, and then click Replicate Configuration on System > Server > Cluster Management. You do not have to restart PingFederate on any running engine node.

Adding custom HTTP response headers - PingFederate - 10.2

PingFederate Server