<div>
Did you verify TLS 1.1 and 1.2 are enabled on the server? Check the following registry 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2] 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client] 
&quot;DisabledByDefault&quot;=dword:00000000 
&quot;Enabled&quot;=dword:00000001 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server] 
&quot;DisabledByDefault&quot;=dword:00000000 
&quot;Enabled&quot;=dword:00000001
</div>

<div>
Yes, both TLS 1.1 and 1.2 are enabled. 
This is what I have now with TLS1.0 enabled since I have no other way to get into it: 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0] 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client] 
&quot;Enabled&quot;=dword:00000001 
&quot;DisabledByDefault&quot;=dword:00000000 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server] 
&quot;Enabled&quot;=dword:00000001 
&quot;DisabledByDefault&quot;=dword:00000000 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1] 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client] 
&quot;Enabled&quot;=dword:00000001 
&quot;DisabledByDefault&quot;=dword:00000000 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server] 
&quot;Enabled&quot;=dword:00000001 
&quot;DisabledByDefault&quot;=dword:00000000 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2] 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client] 
&quot;Enabled&quot;=dword:00000001 
&quot;DisabledByDefault&quot;=dword:00000000 
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server] 
&quot;Enabled&quot;=dword:00000001 
&quot;DisabledByDefault&quot;=dword:00000000
</div>

<div>
Have you tried using each of the Security Layers Terminal Service Config? &nbsp; I would try SSL TLS 1.0 or RDP Security Layer and see if that works. &nbsp;Another option might be enabling FIP Compliant cipher and setting the TSconfig to use them which really isnt recommended.
</div>

<div>
I am using Windows 7 and 10 to connect. I installed RDP 8.0 and it didn't help.
</div>

<div>
Updating RDP to 8.1 enabled access to Windows Server 2012 R2
</div>

<div>
<div class="content wysiwyg-content">
I had to disable TLS 1.0 on Windows Server 2012 R2 due to &nbsp;PCI Compliance requirements. 
Now I can't connect to either server via RDP. 
I have tried editing security to &quot;negotiate&quot; in Group Policy Editor. 
Has anyone found a solution to this? 
 
Thanks, 
Lev
</div>
</div>

I had to disable TLS 1.0 on Windows Server 2012 R2 due to  PCI Compliance requirements.
Now I can't connect to either server via RDP.
I have tried editing security to "negotiate" in Group Policy Editor.
Has anyone found a solution to this?

Thanks,
Lev

RDP to Windows Server 2012 R2 after disabling TLS 1.0

tls/ssl

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.

Windows Server 2012

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.