Saturday, May 22, 2021

Removing insecure Ciphers on Windows server using Group Policy Editor

 Follow the steps

  1. Open Local Group Policy Editor (Press Windows Key + R, then enter "gpedit.msc" and press Enter key
  2. Locate: Computer Configuration\Administrative Templates\Network\SSL Configuration Settings

  3. Set Enabled, remove whole text from "SSL Cipher Suites"


  4. Copy all Ciphers under "Final ciphers set will be" from below snippet and paste in "SSL Cipher Suites"
  5. Click on OK.
  6. Restart your server

Summary

In this exercise we removed insecure ciphers. If you wish to remove other weak ciphers then you can remove them using above steps.

EOF

No comments:

Post a Comment