1.7.2 Disable SSLv2 - 'Enabled = 0'

Information

Disabling weak protocols will help ensure the confidentiality and integrity of in-transit data.

Solution

perform the following to disable ssl 2.0: 1. set the following key to 1. hklm\system\currentcontrolset\control\securityproviders\schannel\protocols\ssl 2.0\server\disabledbydefault 2. set the following key is to 0. hklm\system\currentcontrolset\control\securityproviders\schannel\protocols\ssl 2.0\server\enabled

See Also

https://benchmarks.cisecurity.org/tools2/iis/CIS_Microsoft_IIS_7_Benchmark_v1.7.1.pdf

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7, CSCv6|9.1

Plugin: Windows

Control ID: 0dc929f97b7fb6b294df37f41d747d30087b42aee5be58c81f569caec6f6b7bb