• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 516
  • Last Modified:

Force Microsoft IIS in Win2k3 to only allow 256bit SSL connections.

Is there a way to force IIS to only allow connections with 256 bit ssl?
0
kapara
Asked:
kapara
1 Solution
 
ParanormasticCryptographic EngineerCommented:
Are you sure you really want to do this in the first place?  Understand that 256 bit is only supported in IE on Vista & 2008 clients, not XP, 2003, etc., and some non-IE browsers such as FireFox 3.  You may need an SGC 'step-up' certificate to push this to non-256 capable browsers.

That being said, no, IIS on 2003 does not and likely will never support 256 bit SSL.  You would need to get 2008 server to host this as this has the updated Schannel to support the newer encryption algorithms.
0

Featured Post

Important Lessons on Recovering from Petya

In their most recent webinar, Skyport Systems explores ways to isolate and protect critical databases to keep the core of your company safe from harm.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now