Enable/Disable SSL/TLS versions via Registry Editor

SecureAuth version affected: All

Description:

SSL/TLS may need to be enabled/disabled due to environmental factors or restrictions throughout any given time through the server's lifespan.

Cause:

TLS versions may be turned off due to security server hardening or cipher/protocol lockdowns.

Resolution:

Enabled or disable TLS/SSL as needed be.

1. Open up regedit.exe and navigate to the key location provided:
   HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols
   
   
2. Once here, expand Protocols, there will be the following:
   
   
   
3. To disable or enable a protocol, expand Server or Client, whichever you want to change and adjust the value to the following:
   
   Binary:
   0 - off
   1 - on
   
   Hexadecimal:
   0x00000000 - off
   0xffffffff - on (4294967295)
   
   
4. Once the respective changes are made, restart the server for the registry to propagate.