Improve Security on SBS 2011

HI -
We are trying to be more secure so a client can accept credit cards.  The firm that inspects our vulnerabilities produced the following.  I thought i had addressed this in the security section of SBS 2011 but it appears that i did not.  Any, and all, detailed information on how to correct this would be so appreciated.

The SSL-based service running on this host appears to support the use of "weak" ciphers such as:

- Ciphers suites that have key-lengths of less than 128 bits.

- Ciphers suites using anonymous Diffie-Hellman algorithms (no authentication).

- Ciphers suites offering no encryption.

- Ciphers suites using pre-shared keys.

- Ciphers suites using RC4 or MD5.
Who is Participating?
btanConnect With a Mentor Exec ConsultantCommented:
Try running iiscrypto using its best practice. It helps to set the cipher required in baseline to secure the server to use strong cipher. This only set the cipher on the OS and you need to make sure the appl config changes separately, applicable.

If server is accessible via Internet, I suggest a self assessment using the ssl lab test. It does a good snapshot on the cipher used.
webentprAuthor Commented:
First let me apologize for taking so long to respond.  I will try this - thank you.
webentprAuthor Commented:
Thanks - everything worked correctly - really appreciate your help.
btanExec ConsultantCommented:
As per advised and acknowledged.
All Courses

From novice to tech pro — start learning today.