Header Ads Widget

Responsive Advertisement

Registry Keys to Enabled Workflow Manager CU5 Service Bus 1.1 CU1 with TLS 1.2

Next opportunities August 27, 2022
Registry Keys to Enabled Workflow Manager CU5 Service Bus 1.1 CU1 with TLS 1.2

1.       Save below Registry in TLSCheck.bat file.

2.       Then run this from an Admin command prompt or double click on it.

3.       Click on Run and type Regedit and click on OK.

4.       The Registry Editor will open.

5.       Navigate the below path and set the registry settings required. 

 

1.       Make sure for TLS1.2 Service bus upgrade find the below registries enabled

a.       If not please follow the below steps to enable default registries

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client]

"DisabledByDefault"=dword:00000000

"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server]

"DisabledByDefault"=dword:00000000

"Enabled"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Client]

"DisabledByDefault"=dword:00000000

"Enabled"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.1\Server]

"DisabledByDefault"=dword:00000000

"Enabled"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]

"DisabledByDefault"=dword:00000000

"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]

"DisabledByDefault"=dword:00000000

"Enabled"=dword:00000001

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]

"SchUseStrongCrypto"=dword:00000001

"SystemDefaulTlsVersions"=dword:00000001

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319]

"SchUseStrongCrypto"=dword:00000001

"SystemDefaulTlsVersions"=dword:00000001

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\InternetSettings\WinHttp]

TLS 1.0, TLS 1.1 and TLS 1.2 enable all

 

"DefaultSecureProtocals"dword:00000A80

 

TLS 1.2 only enabled TLS 1.1 and TLS 1.2 disable

"DefaultSecureProtocals"dword:00000800(2048)

"DisableBranchCache"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\InternetSettings\WinHttp]

TLS 1.0, TLS 1.1 and TLS 1.2 enable all

 

"DefaultSecureProtocals"dword:00000A80

 

TLS 1.2 only enabled TLS 1.1 and TLS 1.2 disable

"DefaultSecureProtocals"dword:00000800(2048)

"DisableBranchCache"=dword:00000000

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\FIPSAlgorithmPolicy]

"Enabled"=dword:00000000

References:

https://docs.microsoft.com/en-us/sharepoint/security-for-sharepoint-server/enable-tls-1-1-and-tls-1-2-support-in-sharepoint-server-2019 

https://docs.microsoft.com/en-us/mem/configmgr/core/plan-design/security/enable-tls-1-2-client#bkmk_winhttp

 

Tags:

Post a Comment

0 Comments