How do i enforce IIS 7.0 cipher suite? RSS

3 replies

Last post Feb 08, 2007 07:48 PM by thomad

‹ Previous Thread|Next Thread ›

- Reply
Marzullo

15 Posts

How do i enforce IIS 7.0 cipher suite?

Jan 14, 2007 09:12 AM|LINK

How could i enforce/set/surround cipher suites my IIS is going to negotiate with browsers?

I mean the algorithm negotiated by SSL/TLS sessions for symmetric encrypotion.

Particularly, the server decides the cipher method to use inside ServerHello message based on the ClientHello preferences.
- Edited by Marzullo on Jan 14, 2007 02:19 PM
- Reply
thomad

552 Posts

Re: How do i enforce IIS 7.0 cipher suite?

Jan 29, 2007 04:35 PM|LINK

Marzullo,

This shouldn't have changed from previous versions:

http://support.microsoft.com/kb/245030

Hope this helps

Thomas Deml
Group Program Manager
Internet Information Services
Microsoft Corp.
- Marked as answer by chrisad on Feb 26, 2007 12:12 AM
- Reply
Marzullo

15 Posts

Re: How do i enforce IIS 7.0 cipher suite?

Feb 08, 2007 05:27 AM|LINK

Do you know if this method to control chiper suites is still valid for current windows versions? i.e Vista Ultimate?

My purpose is restricting IIS 7.0 to agree only stronger chiper suites with browsers. In apache i was able to do it from config files.

Thanks.
- Edited by Marzullo on Feb 08, 2007 05:49 AM
- Edited by Marzullo on Feb 08, 2007 05:51 AM
- Edited by Marzullo on Feb 08, 2007 05:52 AM
- Reply
thomad

552 Posts

Re: How do i enforce IIS 7.0 cipher suite?

Feb 08, 2007 07:48 PM|LINK

I don't think it changed. Way too many people rely on this.

Thomas Deml
Group Program Manager
Internet Information Services
Microsoft Corp.

‹ Previous Thread|Next Thread ›

How do i enforce IIS 7.0 cipher suite? RSS

3 replies

Marzullo

How do i enforce IIS 7.0 cipher suite?

thomad

Re: How do i enforce IIS 7.0 cipher suite?

Marzullo

Re: How do i enforce IIS 7.0 cipher suite?

thomad

Re: How do i enforce IIS 7.0 cipher suite?