Enable/Disable SSL/TLS versions via Registry Editor

Follow
    Applies to:
  • Legacy SecureAuth IdP
Deployment model:
  • On Premises
  • SecureAuth version affected: All

    Description:

    SSL/TLS may need to be enabled/disabled due to environmental factors or restrictions throughout any given time through the server's lifespan.

    Cause:

    TLS versions may be turned off due to security server hardening or cipher/protocol lockdowns.

    Resolution:

    Enabled or disable TLS/SSL as needed be.

     

    1. Open up regedit.exe and navigate to the key location provided:
      HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols

    2. Once here, expand Protocols, there will be the following:


    3. To disable or enable a protocol, expand Server or Client, whichever you want to change and adjust the value to the following:

      Binary:
      0 - off
      1 - on

      Hexadecimal:
      0x00000000 - off
      0xffffffff - on (4294967295)

    4. Once the respective changes are made, restart the server for the registry to propagate.
    0 out of 0 found this helpful

    Comments

    0 comments

    Please sign in to leave a comment.