What Ciphers should I remove in IIS
Not sure what is the recommanded ciphers to removed from 2008 R2.
~ weswes chew
April 30th, 2012 6:14pm
Hi,
According to the problem description, this issue is related to IIS. For IIS issue, the best resource is IIS forum.
Based on the current situation, youd better submit a new question to IIS forum for further assistance. In this way, your issue can be resolved effectively.
IIS forum
http://forums.iis.net/
Thanks for your understanding!
Regards,Arthur Li
TechNet Community Support
Free Windows Admin Tool Kit Click here and download it now
May 1st, 2012 4:03am
thankswes chew
May 1st, 2012 11:25am
Have a look at this tool:
https://www.nartac.com/Products/IISCrypto/Default.aspx and this KB document:
http://support.microsoft.com/kb/245030
In general, you should not use any ciphers that have a lower bit length than 128bit and you should be using SSLv3 or TLS 1.0/1.1 only (disable SSLv2).
Cheers
JJJason Jones |
Forefront MVP | Silversands Ltd | My Blogs:
http://blog.msedge.org.uk and
http://blog.msfirewall.org.uk
Free Windows Admin Tool Kit Click here and download it now
May 1st, 2012 11:42am
This may help too:
http://blog.msfirewall.org.uk/2008/10/hardening-ssl-cipher-strength-and-ssl.html
Cheers
JJJason Jones |
Forefront MVP | Silversands Ltd | My Blogs:
http://blog.msedge.org.uk and
http://blog.msfirewall.org.uk
May 1st, 2012 11:43am