Tuesday, August 9, 2011

How to Disable SSLv2 on a Windows Server 2008 and Windows Server 2008 R2

If you are trying to fallow the WIKI post "How to Disable SSLv2 on a Windows Server 2008 and Windows Server 2008 R2" after doing the work, you reboot the problem server, and after rebooting your security scan is still alarming about "SSLv2" enabled on the problem server , create the fallowing key instead.

  1. Open the registry and create a key named Server under the following entry :
  • HKEY_LOCAL_MACHINE
  • SYSTEM
  • CurrentControlSet
  • Control
  • SecurityProviders
  • SCHANNEL
  • Protocols
  • SSL 2.0
  1. Under the registry key Server, create a DWORD value named “DisabledByDefault” and change the value data to “00000001”
  2. Reboot the server

 

Wiki

image

Respectfully,
Oz Casey, Dedeal ( MVP north America)
MCITP (EMA), MCITP (SA)
MCSE 2003, M+, S+, MCDST
Security+, Project +, Server +
http://smtp25.blogspot.com/ (Blog)
http://telnet25.wordpress.com/ (Blog

3 comments:

Active Directory Group Membership said...

Hi all,

When you do this, the client and the server negotiate a common protocol to help secure the channel. If the server and the client have multiple protocols in common, IIS tries to help secure the channel with one of the protocols that IIS supports. Keep it up.....

Karimul Islam said...

lgnetworksinc.comLG Networks specializes in IT Consulting, providing business Computer Support and Network Services in Dallas, Garland, Plano, Richardson, Addison and Irving.
Windows Server 2008 Consulting

Amela Jones said...

Are you going to do a follow up article? Would love to know what happens next.

Amela
IT support Bedford