How to add TLS settings in 2008 R2 server

TLS stands for Transport Layer Security. It is a cryptographic protocol which is used to increase the security of communication happening over the network. It is a successor or SSL (Secure Socket Layer). For further information about TLS, please visit

By default TLS 1.0 is Disabled. We have to enable the TLS by making the registry entries. These are client and server registry entries.

  1. Open registry by going in “Run” and type “regedit”

2. Then navigate to “HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols”


3. Create registry key named “TLS 1.1″ and ” TLS 1.2″ and further “DWORD” value named “client” and “Server”

Creating Folder named “TLS 1.1 and TLS 1.2”

4. Create 4 DWORD registry keys 2 under TLS 1.1 and 2 under TLS 1.2 and each with named “client” and “server”. Like below and value should be 0 for “DisabledByDefault” and 1 for “Enabled”.

Registry keys with value

5. Reboot the server for these settings to take effect.

You may also like...

Leave a Reply

Your email address will not be published.

This site uses Akismet to reduce spam. Learn how your comment data is processed.