Solved

How to enable TLS V 1.0 on Windows 2008 Server

Posted on 2014-11-19
3
348 Views
Last Modified: 2015-03-05
Hello Team,

Can someone guide me on how to enable TLS V 1.0 on my windows 2008 R2 server. I just disabled SSL 2.0 and was told by our security expert I should have TLS V 1.0 enabled instead.

Thank you.
0
Comment
Question by:exTechnology
  • 2
3 Comments
 
LVL 58

Assisted Solution

by:Gary
Gary earned 333 total points
ID: 40452594
It shouldn't be disabled to start with
v3 will be used, falling back to v2 and then to v1
0
 
LVL 58

Assisted Solution

by:Gary
Gary earned 333 total points
ID: 40452608
You can test it here
https://www.ssllabs.com/ssltest/index.html

When it's finished look under Configuration > Protocols
TLS v1, v2 and v3 should be "Yes" and the SSL versions should be "No"
0
 
LVL 4

Accepted Solution

by:
FrankCrast earned 167 total points
ID: 40456979
Hello, you should also disable SSL v3 in addition to v2. Check out articles below that can help with steps needed to enable TLS 1.0, 1.1, and 1.2 as well.

Mitigating SSL v3: https://technet.microsoft.com/en-us/library/security/3009008.aspx

Details for adding support for TLS 1.0/1.1/1.2: How to restrict the use of certain cryptographic algorithms and protocols in Schannel.dll: http://support.microsoft.com/kb/245030 

Poodle attack (due to SSL vulnerability): http://www.scmagazine.com/mitm-attacks-can-force-a-downgrade-to-ssl-30/article/377513/

Hope this helps.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Encryption for Business Encryption (https://en.wikipedia.org/wiki/Encryption) ensures the safety of our data when sending emails. In most cases, to read an encrypted email you must enter a secret key that will enable you to decrypt the email. T…
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conne…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now