diff --git a/admin_manual/configuration_server/harden_server.rst b/admin_manual/configuration_server/harden_server.rst
index 940fecf3c..a73c2c8c2 100644
--- a/admin_manual/configuration_server/harden_server.rst
+++ b/admin_manual/configuration_server/harden_server.rst
@@ -119,10 +119,15 @@ VirtualHost file:
 
   <VirtualHost *:443>
      ServerName cloud.owncloud.com
-     Header always add Strict-Transport-Security "max-age=15768000"
+     Header always add Strict-Transport-Security "max-age=15768000; includeSubDomains; preload"
   </VirtualHost>
 
-It shall be noted that this requires that the ``mod_headers`` extension to be installed.
+Be aware that above policy will also apply for all subdomains, if you don't
+have HTTPS properly configured on all subdomains you mut remove the ``includeSubdomains``
+part.
+
+Furthermore it shall be noted that this requires that the ``mod_headers`` 
+extension is installed.
 
 Proper SSL configuration
 ************************