IIS with SSL 3.0 and TLS 1.0 RRS feed

  • Question

  • I have just rebuild our IIS Server to 2008 R2, I am running IIS 7.5  and some of our users have a hard time with SSL handshake.  On IE9 browser, they must enable ssl 3.0 and TLS 1.0 to login to their account.  How do I disable ssl 3.0 and TLS 1.0 on server sides so our clients don't have to edit their brower security?  On our 2003 server we Enabled REG_DWord to "0".  Didn't work on 2008 R2. 

    HKey_Local_Machine\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\PCT 1.0\Server

    HKey_Local_Machine\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Server

    Any help would be great.

    ~ wes

    wes chew

    Friday, April 27, 2012 9:34 PM

All replies

  • Ok, it just seems to be TLS 1.0 that is causing prolbems with our site.  If I disable ssl3.0 from IE9 browser, it works.  Disable TLS 1.0 doesn't work for me.  Only works on my browser if it's enabled.  Show Content pops up when I enable it.

    Tried to add Reg_Dword to

    HKey_Local_Machine\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server  and Client.  Didn't do anything.

    ~ wes

    wes chew

    Friday, April 27, 2012 10:23 PM