API tools faq
paste
Advertisement
MertcanGokgoz

Disable known weak cryptographic protocols

MertcanGokgoz
Dec 20th, 2018
259
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PowerShell 0.86 KB | None | 0 0
raw download clone embed print report
  1. <#
  2. .SYNOPSIS
  3.     Disable known weak cryptographic protocols
  4. .NOTES    
  5.     Instructs Schannel to disable known weak cryptographic algorithms, cipher suites, and SSL/TLS protocol versions that may be otherwise enabled for better interoperability.
  6.     In .Net framework 4.5.2 and below, if strong cryptography is not set, SSL 3.0 or TLS 1.0 will be used by default.
  7.     For .Net 4.6.1 strong cryptography is enabled by default, meaning that secure HTTP communications will use TLS 1.0, TLS 1.1 or TLS 1.2.
  8. #>  
  9.  
  10.  
  11. # set strong cryptography on 64 bit .Net Framework
  12. Set-ItemProperty -Path 'HKLM:\SOFTWARE\Wow6432Node\Microsoft\.NetFramework\v4.0.30319' -Name 'SchUseStrongCrypto' -Value '1' -Type DWord
  13.  
  14.  
  15. # set strong cryptography on 32 bit .Net Framework
  16. Set-ItemProperty -Path 'HKLM:\SOFTWARE\Microsoft\.NetFramework\v4.0.30319' -Name 'SchUseStrongCrypto' -Value '1' -Type DWord
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!