locked
Disable TLS 1.0 and TLS 1.1 on Windows 2012 R2 File Server. RRS feed

  • Question

  • Hello Friends,

    During the Security Audit we have been suggested to disable below things on Windows 2012 R2 Server which is our File Server.

    TLS/SSL Server Supports RC4 Cipher Algorithms (CVE-2013-2566)
    TLS/SSL Server Supports 3DES Cipher Suite
    TLS/SSL Server is enabling the BEAST attack
    TLS/SSL Server Supports The Use of Static Key Ciphers
    TLS Server Supports TLS version 1.1
    TLS Server Supports TLS version 1.0

    Is that safe to disable the TLS 1.0 and 1.1 on File Server?

    Regards,

    SGH.


    MCP, MCTS

    Wednesday, September 21, 2016 10:41 AM

Answers

  • Hi,

    >> that safe to disable the TLS 1.0 and 1.1 on File Server?

    Secure Socket Layer (SSL) and Transport Security Layer (TLS) are both cryptographic protocols which provide secure communication over networks. 

    Many people think of TLS and SSL as protocols that are used with Web browsers to browse the Internet more securely. However, they are also general purpose protocols that can be used whenever authentication and data protection are necessary. For example, you can use TLS/SSL for:

    • SSL-secured transactions with an e-commerce Web site
    • Authenticated client access to an SSL-secured Web site
    • Remote access
    • SQL access
    • E-mail

    For your file server,if you don't need to use them,you could disable them.Or you want to use TLS 1.2 instead of them,you need to worry about those outdated clients which not support 1.2 .


    Best Regards,
    Cartman
    Please remember to mark the replies as an answers if they help and unmark them if they provide no help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Thursday, September 22, 2016 5:57 AM

All replies

  • Hi,

    >> that safe to disable the TLS 1.0 and 1.1 on File Server?

    Secure Socket Layer (SSL) and Transport Security Layer (TLS) are both cryptographic protocols which provide secure communication over networks. 

    Many people think of TLS and SSL as protocols that are used with Web browsers to browse the Internet more securely. However, they are also general purpose protocols that can be used whenever authentication and data protection are necessary. For example, you can use TLS/SSL for:

    • SSL-secured transactions with an e-commerce Web site
    • Authenticated client access to an SSL-secured Web site
    • Remote access
    • SQL access
    • E-mail

    For your file server,if you don't need to use them,you could disable them.Or you want to use TLS 1.2 instead of them,you need to worry about those outdated clients which not support 1.2 .


    Best Regards,
    Cartman
    Please remember to mark the replies as an answers if they help and unmark them if they provide no help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Thursday, September 22, 2016 5:57 AM
  • Hi,

    I am checking to see if the problem has been resolved. If there's anything you'd like to know, don't hesitate to ask.


    Best Regards,
    Cartman
    Please remember to mark the replies as an answers if they help and unmark them if they provide no help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Wednesday, September 28, 2016 9:06 AM