DIGIPOWER Tutorials

Trang chủ | | Danh mục bài viết yêu thích | Liên hệ | Đăng nhập Trang chủ | | Danh mục bài viết yêu thích | Liên hệ | Đăng nhập
Tìm kiếm các bài viết theo từ khoá Liệt kê theo danh mục
Hướng dẫn tắt SSL v3 Protocol trong IIS
Chi tiết bài viết

Lần cập nhật cuối
10th of February, 2015

Ý kiến người dùng (0 Bình chọn)
Không có người dùng bình chọn.

Làm thế nào bạn sẽ đánh giá câu trả lời này?
có ích
không hữu ích

Depending on how your Windows servers are configured, you may need to disable SSL v3.

Note that older versions of Internet Explorer may not have the TLS protocol enabled by default. If you disable SSL versions 2.0 and 3.0, the older versions of Internet Explorer will need to enable the TLS protocol before they can connect to your site.

For a Simpler Way to Disable the SSL v3 Protocol:

DigiCert is not responsible for any complications or problems if you decide to use this .zip file to disable the SSL v3 protocol on your server.

  1. Log into your server as a user with Administrator privileges.

  2. Download DisableSSL3.zip, extract the .zip file contents, and then double-click DisableSSL3.reg.

  3. In the Registry Editor caution window, click Yes.

  4. Restart server.

If you prefer to do it yourself, follow the steps in the instruction below.

Microsoft IIS: How to Disable the SSL v3 Protocol

  1. Open the Registry Editor and run it as administrator.

    For example, in Windows 2012:

    1. On the Start screen type regedit.exe.

    2. Right-click on regedit.exe and click Run as administrator.

  2. In the Registry Editor window, go to:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\

    Windows Registry Key

  3. In the navigation tree, right-click on Protocols, and in the pop-up menu, click New > Key.

    Windows Registry Key

  4. Name the key, SSL 3.0.

  5. In the navigation tree, right-click on the new SSL 3.0 key that you just created, and in the pop-up menu, click New > Key.

    Windows Registry Key

  6. Name the key, Client.

  7. In the navigation tree, right-click on the new SSL 3.0 key again, and in the pop-up menu, click New > Key.

    Windows Registry Key

  8. Name the key, Server.

  9. In the navigation tree, under SSL 3.0, right-click on Client, and in the pop-up menu, click New > DWORD (32-bit) Value.

    Windows Registry Key

  10. Name the value DisabledByDefault.

  11. In the navigation tree, under SSL 3.0, select Client and then, in the right pane, double-click the DisabledByDefault DWORD value.

    Windows Registry Key

  12. In the Edit DWORD (32-bit) Value window, in the Value Data box change the value to 1 and then, click OK.

  13. In the navigation tree, under SSL 3.0, right-click on Server, and in the pop-up menu, click New > DWORD (32-bit) Value.

    Windows Registry Key

  14. Name the value Enabled.

  15. In the navigation tree, under SSL 3.0, select Server and then, in the right pane, double-click the Enabled DWORD value.

    Windows Registry Key

  16. In the Edit DWORD (32-bit) Value window, in the Value Data box leave the value at 0 and then, click OK.

  17. Restart your Windows server.

    You have successfully disabled the SSL v3 protocol.

For instructions about disabling browser support for the SSL v3 protocol, see Disabling Browser Support for the SSL 3.0.

Các bài liên quan
Không có bài viết liên quan đã được tìm thấy.
File đính kèm
Không có File đính kèm nào được tìm thấy.

Tiếp tục

Knowledge Management