Share via

SCCM CB 1910 - security protocol

karthik palani 661 Reputation points
2020-08-25T18:30:21.627+00:00

Hi All,

I need advice on the below please

I have Sccm server which is running on windows server 2016 and I have clients from win2012/windows 10

if I enable TLS 1.2 in SCCM server and if the client doesn’t support TLS 1.2. This may orphan the client communication. Instead can I use TLS fallback SCSV mechanism If it is doable as a security protocol in SCCM server does it still cause any problem in client communication. Please suggest

Community Center | Not monitored
0 comments

Answer accepted by question author

AllenLiu-MSFT 49,441 Reputation points Microsoft External Staff
2020-08-26T09:06:50.03+00:00

Windows Server 2012, don't enable TLS 1.1 or TLS 1.2 by default for secure communications using WinHTTP. For these earlier versions of Windows, install Update 3140245 to enable the registry value.
For the details, you may refer to:
https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/security/enable-tls-1-2-client#bkmk_winhttp

If the response is helpful, please click "Accept Answer" and upvote it.

Was this answer helpful?

0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.