On our small site, we are running a single DC, server 2016 Standard running the essentials role.
After a penetration test on our Domain. The report says that "Several HTTP headers that can be used to provide additional security were not used, these security headers can help defend against a number of common attack vectors"
from googling It looks like this can be fixed with PowerShell but the commands are not being recognised. What would be the simplest way to proceed?
2) Ultimately you'll effect header changes in your Webserver config files, then restart your Webserver to serve new headers.
3) Likely you can use Powershell commands + I prefer just to edit Webserver configs to effect header changes.
File Editing == Simple
Scripting Edits == Complex (and can destroy files)
Since this is usually a one off (one + done) activity, file editing is the safer choice.
Also file editing will work one any Webserver, where scripted edits only work on 1x Webserver config.