FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Disabling HTTP Options

Go to solution
Andy_Evans
Frequent Guest

‎29 Jan 2019 04:28 PM

Hello,

we are looking to disable HTTP Options on our cluster activegate, per request from our security team as it has raised concerns about potential vulnerabilities. Is there any way that those options can be disabled?

Thanks in advance


Labels:
0 Kudos
Reply
2 REPLIES 2

Go to solution
Babar_Qayyum
DynaMight Guru
DynaMight Guru

‎29 Jan 2019 04:59 PM

Hello @Andrew E.

You can use ActiveGate properties for the configuration. These properties are applicable for both Environment ActiveGates and Cluster ActiveGates.

Have a look on the below link for more insight.

https://www.dynatrace.com/support/help/deploy-dyna...

Regards,

Babar


0 Kudos
Reply

Go to solution
AlexanderSommer
Dynatrace Champion
Dynatrace Champion

‎01 Feb 2019 05:51 PM

HTTP OPTIONS is necessary for REST API and Real user monitoring (beacon forwarders). The server does not respond with sensitive information, thus
is not considered a security vulnerability.

HTTPS OPTIONS method is also a requirement for CORS
calls: https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS


Reply
Ask a question