Webserver & SSL Hardening – IIS

By | January 7, 2014

IIS-Hardening-1-Disable-insecure-Ciphers-and-Hashes

I believe that a reboot is required for the configuration to take effect. A reboot is required. May not be required for Windows 2003 / IIS6? Might get away with a “iisresetĀ /restart”

Useful links to check before and after applying the registry script.

http://www.serversniff.net/sslcheck.php

https://www.ssllabs.com/ssltest/analyze.html

https://www.nartac.com/Products/IISCrypto