Hi Windows leads,
We have below vulnerabilities on Web Server, DB server, and application Server:
SSL Medium Strength Cipher Suites Supported (SWEET32)
SSL RC4 Cipher Suites Supported (Bar Mitzvah)
OS version: Windows Server 2008 R2
IIS Version: 8.5.9600.16384
.Net Version: 4.5
Please find the attachments we did on registry for your reference.
We have made changes on Registry like HKey local machine/system/current control set/SecuriyProviders/Ciphers/Enabled AES only, and in Hashes Enabled all and in KeyExchangeAlgorithms Enabled all and in Protocols enabled only TLS 1.2.
The issue was due to vulnerability (SSL Bar Mitzvah and SWEET32) on DEV server MS238GSECWS02D from weekly security report. We have done changes on registry which was recommended by Microsoft and updated KBs. Before done changes on registry, I have taken backup of registry. After that system doesn’t comes online. I have tried to restore registry from backup. That doesn’t work. Then have contacted 2nd watch team to restore last day backup of root drive. The issue got resolved before Non-Business hours.
Kindly provide more information and help us to resolve this issue.
Thanks & Regards
7829124152