SSL version 2 on ISA2006 unsecure ?

I have a website, OWA and Server-Activesync behind an ISA2006.
The Exchange is a single server (no front end)

I did a test on this ISA2006 with Nessus and one issue is that the server uses SSL 2.0, the recommendation is that i disable 2.0 and uses SSL 3.0 or TLS 1.0.

Can anyone explain this to me in human language, and tell me if it's possible on ISA2006.
Can i use SSL 3.0 insted of 2.0 ??
kjohansenAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Keith AlabasterEnterprise ArchitectCommented:
ISA will support all versions of SSL out of the box and they are all secure.

Keith
0
kjohansenAuthor Commented:
Thanks for that exeptional description Keith that was just what i needed..

0
Keith AlabasterEnterprise ArchitectCommented:
I assume that was some sort of attempt by yourself at sarcasm?

You state you have performed a test with Nessus although you give no details of what the test was nor what caused/provided the recommendation so I am unsure what you would like me to respond to for that aspect.
Again, it is difficult to describe anything at all with out some background detail to give a context.
You also ask if you can use SSL3.0 instead of SSL2.0? ISA does not dictate the SSL version. On the assumption you are bridging SSL through the publishing rules then ISA will make an SSL call and the host will dictate the version in its response - and ISA will use it.

Your actual question simply asks if SSL 2.0 is unsecure on ISA2006 - no, it is not.
If that is not actually the question that you wanted to ask then please feel free to provide some detailed information that will allow us to respond accordingly or just state that this is not the question you want answering, and fire away with what you really want to ask.


0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Forefront ISA Server

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.