---
title: The web app should redirect all HTTP traffic to HTTPS
description: Datadog, the leading service for cloud-scale monitoring.
breadcrumbs: >-
  Docs > Datadog Security > OOTB Rules > The web app should redirect all HTTP
  traffic to HTTPS
---

# The web app should redirect all HTTP traffic to HTTPS
 
## Description{% #description %}

Azure Web Apps allow sites to use both HTTP and HTTPS by default. Web apps can be accessed by anyone using non-secure HTTP links by default. Non-secure HTTP requests can be restricted and all HTTP requests redirected to the secure HTTPS port. It is recommended to enforce HTTPS-only traffic. Enabling HTTPS-only traffic redirects all non-secure HTTP request to HTTPS ports. HTTPS uses the SSL/TLS protocol to provide a secure connection, which is both encrypted and authenticated, so it is important to support HTTPS for the security benefits.

## Remediation{% #remediation %}

### From the console{% #from-the-console %}

1. Log in to Azure Portal using [https://portal.azure.com](https://portal.azure.com).
1. Go to **App Services**.
1. Click on each App.
1. Under **Setting** section, click on **TLS/SSL settings**.
1. Under the **Bindings** pane, set **HTTPS Only** to **On** under the **Protocol Settings** section.