Šta je novo?
SerbianForum

This is a sample guest message. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your own topics and posts, as well as connect with other members through your own private inbox!

  • Hvala svima na 1 900 000+ postova & 500 000+ tema!

Disabling the SSL v3 Protocol

  • Začetnik teme Angelus
  • Datum pokretanja
Angelus

Angelus

Administrator
#1
Depending on how your Windows servers are configured, you may need to disable SSL v3.

Note that older versions of Internet Explorer may not have the TLS protocol enabled by default. If you disable SSL versions 2.0 and 3.0, the older versions of Internet Explorer will need to enable the TLS protocol before they can connect to your site.

For a Simpler Way to Disable the SSL v3 Protocol:
DigiCert is not responsible for any complications or problems if you decide to use this .zip file to disable the SSL v3 protocol on your server.

  1. Log into your server as a user with Administrator privileges.

  2. Download DisableSSL3.zip, extract the .zip file contents, and then double-click DisableSSL3.reg.

  3. In the Registry Editor caution window, click Yes.

  4. Restart server.
If you prefer to do it yourself, follow the steps in the instruction below.

Microsoft IIS: How to Disable the SSL v3 Protocol
  1. Open the Registry Editor and run it as administrator.

    For example, in Windows 2012:
    1. On the Start screen type regedit.exe.

    2. Right-click on regedit.exe and click Run as administrator.
  2. In the Registry Editor window, go to:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\

    iis-disable-ssl-v3-1.png


  3. In the navigation tree, right-click on Protocols, and in the pop-up menu, click New > Key.

    iis-disable-ssl-v3-2.png


  4. Name the key, SSL 3.0.

  5. In the navigation tree, right-click on the new SSL 3.0 key that you just created, and in the pop-up menu, click New > Key.

    iis-disable-ssl-v3-3.png


  6. Name the key, Client.

  7. In the navigation tree, right-click on the new SSL 3.0 key again, and in the pop-up menu, click New > Key.

    iis-disable-ssl-v3-3.5.png


  8. Name the key, Server.

  9. In the navigation tree, under SSL 3.0, right-click on Client, and in the pop-up menu, click New > DWORD (32-bit) Value.

    iis-disable-ssl-v3-4.png


  10. Name the value DisabledByDefault.

  11. In the navigation tree, under SSL 3.0, select Client and then, in the right pane, double-click the DisabledByDefault DWORD value.

    iis-disable-ssl-v3-5.png


  12. In the Edit DWORD (32-bit) Value window, in the Value Data box change the value to 1 and then, click OK.

  13. In the navigation tree, under SSL 3.0, right-click on Server, and in the pop-up menu, click New > DWORD (32-bit) Value.

    iis-disable-ssl-v3-6.png


  14. Name the value Enabled.

  15. In the navigation tree, under SSL 3.0, select Server and then, in the right pane, double-click the Enabled DWORD value.

    iis-disable-ssl-v3-7.png


  16. In the Edit DWORD (32-bit) Value window, in the Value Data box leave the value at 0 and then, click OK.

  17. Restart your Windows server.

    You have successfully disabled the SSL v3 protocol.
 

Top