Knowledge Base

Support Policies

Enable/Disable SSL/TLS versions via Registry Editor

SecureAuth version affected: All

Description:

SSL/TLS may need to be enabled/disabled due to environmental factors or restrictions throughout any given time through the server's lifespan.

Cause:

TLS versions may be turned off due to security server hardening or cipher/protocol lockdowns.

Resolution:

Enabled or disable TLS/SSL as needed be.

 

  1. Open up regedit.exe and navigate to the key location provided:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols

  2. Once here, expand Protocols, there will be the following:


  3. To disable or enable a protocol, expand Server or Client, whichever you want to change and adjust the value to the following:

    Binary:
    0 - off
    1 - on

    Hexadecimal:
    0x00000000 - off
    0xffffffff - on (4294967295)

  4. Once the respective changes are made, restart the server for the registry to propagate.
Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.