• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2012
  • Last Modified:

TLS version check on a Windows IIS server.


I am using this link to check my TLS status of my IIS web server: https://www.ssllabs.com/ssltest/analyze.html?d=casnet.casusa.com

I see that TLS 1.1, 1.2 is enabled.  1.0 is disabled.  

When I go back to my WEB server's registry, I do not see TLS 1.2.  

Please see the screenshot and advise if you know why TLS 1.2 is not displayed in the registry.  

1 Solution
Do you have SchUseStrongCrypto enabled in the registry?
Please see the screenshot and advise if you know why TLS 1.2 is not displayed in the registry.
Because it's enabled by default. https://msdn.microsoft.com/library/windows/desktop/mt808159.aspx

However, you should also be looking at the ciphers that are enabled, and work on disabling the weak ones.
Seth SimmonsSr. Systems AdministratorCommented:
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:

Accept: masnrock (https:#a42475164)

If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

Experts-Exchange Cleanup Volunteer
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

WEBINAR: 10 Easy Ways to Lose a Password

Join us on June 27th at 8 am PDT to learn about the methods that hackers use to lift real, working credentials from even the most security-savvy employees. We'll cover the importance of multi-factor authentication and how these solutions can better protect your business!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now