How to add TLS settings in 2008 R2 server

TLS stands for Transport Layer Security. It is a cryptographic protocol which is used to increase the security of communication happening over the network. It is a successor or SSL (Secure Socket Layer). For further information about TLS, please visit https://tools.ietf.org/html/rfc5246#section-1.1

By default TLS 1.0 is Disabled. We have to enable the TLS by making the registry entries. These are client and server registry entries.

1. Open registry by going in “Run” and type “regedit”

2. Then navigate to “HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols”

3. Create registry key named “TLS 1.1″ and ” TLS 1.2″ and further “DWORD” value named “client” and “Server”

4. Create 4 DWORD registry keys 2 under TLS 1.1 and 2 under TLS 1.2 and each with named “client” and “server”. Like below and value should be 0 for “DisabledByDefault” and 1 for “Enabled”.

5. Reboot the server for these settings to take effect.