1.7.1 Disable PCT 1.0 - 'DisabledByDefault = 1'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Disabling weak protocols will help ensure the confidentiality and integrity of in-transit data.

Solution

perform the following to disable pct 1.0: 1. set the following key to 0. hklm\system\currentcontrolset\control\securityproviders\schannel\protocols\pct 1.0\server\enabled 2. set the following key to 1. hklm\system\currentcontrolset\control\securityproviders\schannel\protocols\pct 1.0\server\disabledbydefault

See Also

https://benchmarks.cisecurity.org/tools2/iis/CIS_Microsoft_IIS_7_Benchmark_v1.7.1.pdf

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8

Plugin: Windows

Control ID: 56cca569f1b34f620b314216cb7453f1ba5aaa7b0bc31fc306a6efd00ea0f87d