?
Solved

Disabling RC4 Cipher On Windows Server 2008 Service Pack 2

Posted on 2014-11-04
2
Medium Priority
?
1,971 Views
Last Modified: 2014-11-05
Hello Experts,
Vulnerability with regards to our OWA web site using RC4 cipher algorithms in SSL cipher suites has been identified.  I have been reading on how to remediate this issue and I’m thinking that disabling RC4 is the way to go.  Our Exchange server is running Windows Server 2008 with service pack 2.  We are running Exchange 2007.  I have been reading on how to disable the RC4 cipher algorithms and everything I have read states I need to modify the following registry keys:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 128/128]
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 40/128]
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers\RC4 56/128]
"Enabled"=dword:00000000
The problem I’m running into is these registry keys do not exist.  Should I create the following subkeys and dword values within each sub-key?
Sub-keys:
RC4 128/128
RC4 40/128
RC4 56/128.

Dword Values:
“Enabled”=dword:00000000

Any clarification will be greatly appreciated.

Nick
0
Comment
Question by:ndalmolin_13
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 12

Accepted Solution

by:
David Paris Vicente earned 2000 total points
ID: 40422879
Hi ndalmolin_13,

This case is similar to one that I answered in the past for other protocols but it was to 2003, you can check it here

In your case if you don´t have that Keys you should create them and run the security test again to check if anything else is reported regarding the RC4 in SSL,
of course before doing any change to the registry you should backup

I hope it helps.

Regards
0
 
LVL 1

Author Closing Comment

by:ndalmolin_13
ID: 40424401
Thanks for the info
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After hours on line I found a solution which pointed to the inherited Active Directory permissions . You have to give/allow permissions to the "Exchange trusted subsystem" for the user in the Active Directory...
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Suggested Courses
Course of the Month15 days, 14 hours left to enroll

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question