daily pastebin goal
30%
SHARE
TWEET

TLS SecurityProviders

TheShadow Dec 9th, 2018 196 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. Windows Registry Editor Version 5.00
  2.  
  3. ;Microsoft Document https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/dn786418(v=ws.11)#BKMK_SchannelTR_TLS12
  4. ;This document will disable the follow:
  5. ;  - PCT 1.0
  6. ;  - SSL 2.0
  7. ;  - SSL 3.0
  8. ;  - TLS 1.0
  9.  
  10. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols]
  11.  
  12.  
  13. ;PCT 1.0
  14. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\PCT 1.0]
  15.  
  16. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\PCT 1.0\Client]
  17. "DisabledByDefault"=dword:00000001
  18. "Enabled"=dword:00000000
  19.  
  20. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\PCT 1.0\Server]
  21. "DisabledByDefault"=dword:00000001
  22. "Enabled"=dword:00000000
  23.  
  24.  
  25. ;SSL 2.0
  26. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0]
  27.  
  28. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Client]
  29. "DisabledByDefault"=dword:00000001
  30. "Enabled"=dword:00000000
  31.  
  32. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Server]
  33. "DisabledByDefault"=dword:00000001
  34. "Enabled"=dword:00000000
  35.  
  36.  
  37. ;SSL 3.0
  38. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0]
  39.  
  40. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Client]
  41. "DisabledByDefault"=dword:00000001
  42. "Enabled"=dword:00000000
  43.  
  44. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server]
  45. "DisabledByDefault"=dword:00000001
  46. "Enabled"=dword:00000000
  47.  
  48.  
  49. ;TLS 1.0
  50. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0]
  51.  
  52. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client]
  53. "DisabledByDefault"=dword:00000001
  54. "Enabled"=dword:00000000
  55.  
  56. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server]
  57. "DisabledByDefault"=dword:00000001
  58. "Enabled"=dword:00000000
  59.  
  60.  
  61. ;TLS 1.1
  62. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1]
  63.  
  64. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client]
  65. "DisabledByDefault"=dword:00000000
  66. "Enabled"=dword:00000001
  67.  
  68. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server]
  69. "DisabledByDefault"=dword:00000000
  70. "Enabled"=dword:00000001
  71.  
  72.  
  73. ;TLS 1.2
  74. ;Note: For Win7 / Win2008R2, you must have DisabledByDefault set to 0 in client Win7 and in Both Win2008R2
  75. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2]
  76.  
  77. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
  78. "DisabledByDefault"=dword:00000000
  79. "Enabled"=dword:00000001
  80.  
  81. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
  82. "DisabledByDefault"=dword:00000000
  83. "Enabled"=dword:00000001
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top