ndalmolin_13
asked on
Disabling RC4 Cipher On Windows Server 2008 Service Pack 2
Hello Experts,
Vulnerability with regards to our OWA web site using RC4 cipher algorithms in SSL cipher suites has been identified. I have been reading on how to remediate this issue and I’m thinking that disabling RC4 is the way to go. Our Exchange server is running Windows Server 2008 with service pack 2. We are running Exchange 2007. I have been reading on how to disable the RC4 cipher algorithms and everything I have read states I need to modify the following registry keys:
[HKEY_LOCAL_MACHINE\SYSTEM \CurrentCo ntrolSet\C ontrol\Sec urityProvi ders\SCHAN NEL\Cipher s\RC4 128/128]
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM \CurrentCo ntrolSet\C ontrol\Sec urityProvi ders\SCHAN NEL\Cipher s\RC4 40/128]
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM \CurrentCo ntrolSet\C ontrol\Sec urityProvi ders\SCHAN NEL\Cipher s\RC4 56/128]
"Enabled"=dword:00000000
The problem I’m running into is these registry keys do not exist. Should I create the following subkeys and dword values within each sub-key?
Sub-keys:
RC4 128/128
RC4 40/128
RC4 56/128.
Dword Values:
“Enabled”=dword:00000000
Any clarification will be greatly appreciated.
Nick
Vulnerability with regards to our OWA web site using RC4 cipher algorithms in SSL cipher suites has been identified. I have been reading on how to remediate this issue and I’m thinking that disabling RC4 is the way to go. Our Exchange server is running Windows Server 2008 with service pack 2. We are running Exchange 2007. I have been reading on how to disable the RC4 cipher algorithms and everything I have read states I need to modify the following registry keys:
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
The problem I’m running into is these registry keys do not exist. Should I create the following subkeys and dword values within each sub-key?
Sub-keys:
RC4 128/128
RC4 40/128
RC4 56/128.
Dword Values:
“Enabled”=dword:00000000
Any clarification will be greatly appreciated.
Nick
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER