Removing HSTS in IE to test redirecting to https if supported by browser and is ok for subdomains

Question

Situation

Is need for transferring site to https but not so important subdomains does not support https. To add this header on supported domains when opening main page already has been made functionality and it has been tested and worked in Opera, Chrome and FireFox. But as usually - need to test also on IE.

Problem

I haven't found solution to remove Secure-Transport-Security header for this site on browser to be able to test it.

Question

How to delete saved Strict-Transport-Security header in IE like in Chrome is 'chrome:net-intenrals/#hsts' to test this auto redirecting?

Answer 1

For testing purposes you could disable the HSTS-Feature for the whole IE (i.e. IE11) or only for a specific user. Here is a Microsoft KB how to do that: Internet Explorer 11 adds support for HTTP Strict Transport Security standard

Answer 2

Windows stores the dynamic HSTS table in the WebCacheV01.dat file. You can clear the cache by deleting the contents of the following directory:

%localappdata%\Microsoft\Windows\WebCache

You can view the contents of the HSTS table by opening the the following file with an ESE viewer such as ESEDatabaseView and locating the HstsEntryEx tables.

%localappdata%\Microsoft\Windows\WebCache\WebCacheV01.dat