Disable SSL 3.0 on IBCM Server.

Question

Team,

In a recent Security Audit at my workplace , it was found that SSLv3 was enabled on IBCM server.

We need to disable SSLv3 , TLSv1  &  enable TLSv1.2 .

Did anybody done this…  Kindly share your Observations..

Also, Any Support article, guide will be of great help.

Thanks in Advance..

Answers ( 4 )

    0
    2020-06-20T18:04:25+05:30

    Thanks..
    This can be treated as Closed.

  1. Any update please?

    0
    2020-06-17T17:39:26+05:30

    Please check twice before enabling these registry keys as SCCM console communication between application server and database server uses TLS 1.0. Also if you enable TLS 1.2 please validate client and server communication receiving policy.

    Is your sccm infra is on TLS 1.2 ..?? If yes, then you may not face many challenges

    Best answer
    1
    2020-06-17T17:26:16+05:30

    These are easily doable with registry keys. Basically, what you’re looking at is this in the registry
    HKey_Local_Machine\System\CurrentControlSet\Control\SecurityProviders \SCHANNEL\Protocols

    There are plenty of resources easily found via Google and Bing online.

Leave an answer

Sorry, you do not have permission to answer to this question .