Larry Kiterling
asked on
How does one change from SSL v3 to TLS on IIS7?
I have a done a vulnerability scan and need to change my IIS7 from SSL to TLS. Are there any steps that show the process?
This should give you the info you're looking for: https://support.microsoft.com/en-us/kb/187498
ASKER
If i disable SSL, will it automatically use TLS? Do i need to do anything with certificates from Godaddy?
It should automatically use TLS.
You can see what your server supports if you punch in your domain here:
https://www.ssllabs.com/ssltest/
Scroll down to the bottom of the results for detailed info.
Your GoDaddy certs should be fine.
You can see what your server supports if you punch in your domain here:
https://www.ssllabs.com/ssltest/
Scroll down to the bottom of the results for detailed info.
Your GoDaddy certs should be fine.
ASKER
Thanks!
This server is currently being used for OWA and mail. Is there anything I should be concern about when disabling SSL?
This server is currently being used for OWA and mail. Is there anything I should be concern about when disabling SSL?
This really has to do with the clients the will be connecting. Unless you have some very old devices connecting, they should use TLS 1.1 or TLS 1.2 (if your server supports it).
All of this is below the application layer and just has to do with the encrypted communications tunnel that is brought up when the client connects to the server.
All of this is below the application layer and just has to do with the encrypted communications tunnel that is brought up when the client connects to the server.
Try using IIS Crypto
ASKER
Thanks for the fast response Jeremy, I'll give it a shot.
ASKER
If I make this change to a OWA/Exchange server, will there be any disruption to the Outlook Clients or Mobile Exchanges?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.