Enable TLS 1.2 on Windows Server 2012 R2

Question

question

Angelo-8278 asked Mar 8, '22 Angelo-8278 answered Mar 8, '22

Enable TLS 1.2 on Windows Server 2012 R2

Good morning everyone,
I am installing on server 2012 R2 a new cloud antivirus but the agent
installed on server does not contact the cloud console because they are a TLS cipher suites mismatch.

If i check with PS command i have this output:
PS [Net.ServicePointManager]::SecurityProtocol
Ssl3, Tls

I read many articles about this problem and i add these registry keys but nothing as changed:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"Enabled"=dword:00000001
"DisabledByDefault "=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault "=dword:00000000
"Enabled"=dword:00000001

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001

But always and only SSL3 and TLS remains enabled

Can you help me?
regards

Angelo

windows-server-2012

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Answer 1 · 2022-03-08T15:17:06.843Z

Angelo-8278 answered Mar 8, '22

update:

PS C:\Windows\system32> [enum]::GetValues('Net.SecurityProtocolType')
SystemDefault
Ssl3
Tls
Tls11
Tls12
Tls13

It seeam all ok, it's possible check what chiper suite are enabled?

5 |1600 characters needed characters left characters exceeded

Attachments: Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

question