question

venkateshvsa-4252 avatar image
0 Votes"
venkateshvsa-4252 asked SamWu-MSFT commented

When HTTPS is implemented on IIS which cryptographic modules does IIS use


When HTTPS is implemented on IIS which cryptographic modules does IIS use?

Which providers and modules does IIS use for HTTPS connections?

On Windows Server 2016 or higher.

windows-server-2019windows-server-2016windows-server-iis
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

JimmySalian-2011 avatar image
0 Votes"
JimmySalian-2011 answered

Hi @venkateshvsa-4252 ,

if the server is FIPS compliant and policies are configured then the OS is already configured if not you will have enable the policy for that - system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing

However the detailed CM is validated for Windows Server 2016 and certificate of that module is over here 2937



==
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

venkateshvsa-4252 avatar image
0 Votes"
venkateshvsa-4252 answered SamWu-MSFT commented

@JimmySalian-2011, Thank you for your answer.
Does IIS use "Cryptographic Module" only when HTTPS is enabled, which module does it use when HTTPS is not enabled?

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.