TLSv1.1 or TLSv1.2

I have a Lync 2010 setup.

Hopefully this will be an easy fix.

For PCI requirements, we need to stop using TLSv1 and start using TLSv1.1 or TLSv1.2 for our outside connection.

I cant find anything anywhere about Lync 2010 and TLS setup.   I can only assume that during installation TLS1 is setup as default, but I need to change the TLS level.....

How???

May 5th, 2015 12:03pm

Hi JohnFli1,

 

These keys do not exist so they need to be created prior to setting values.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.0\Client] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.0\Server] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Client] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Server] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Client] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Server]

 

And then create the following DWORD entries under each path.


 

Note :

Windows Server 2008 supports the following protocols:

  • SSL 2.0
  • SSL 3.0
  • TLS 1.0

Windows Server 2008 R2 and Windows 7 support the following protocols:

  • SSL 2.0
  • SSL 3.0
  • TLS 1.0
  • TLS 1.1
  • TLS 1.2

For more details, please check out https://support.microsoft.com/en-us/kb/245030?wa=wsignin1.0

 

Best regards,

Eric

Free Windows Admin Tool Kit Click here and download it now
May 6th, 2015 2:54am
Works great, thank you
May 6th, 2015 6:54pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics