Force Microsoft IIS in Win2k3 to only allow 256bit SSL connections.

Is there a way to force IIS to only allow connections with 256 bit ssl?
LVL 1
kaparaAsked:
Who is Participating?
 
ParanormasticConnect With a Mentor Cryptographic EngineerCommented:
Are you sure you really want to do this in the first place?  Understand that 256 bit is only supported in IE on Vista & 2008 clients, not XP, 2003, etc., and some non-IE browsers such as FireFox 3.  You may need an SGC 'step-up' certificate to push this to non-256 capable browsers.

That being said, no, IIS on 2003 does not and likely will never support 256 bit SSL.  You would need to get 2008 server to host this as this has the updated Schannel to support the newer encryption algorithms.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.