TLS Protocol Based Collection in SCCM

Dev99 00 41 Reputation points

HI everyone,
I am going to create collection in SCCM based on TLS Protocol 1.0,1.1,1.2,1.3, can anyone share Query to collect automatically machines on which TLS are disabled and on those machine on which these protocol are enabled.

Need help..


Microsoft Configuration Manager
0 comments No comments
{count} votes

4 answers

Sort by: Most helpful
  1. Garth Jones 1,656 Reputation points

    TLS settings are inventoried by ConfigMgr. You need to first inventory those setting before you can create a collections.

    1 person found this answer helpful.

  2. TrudaZeng-MSFT 766 Reputation points

    To achieve this goal, follow this step, according to the following article.

    1). inventory the devices with TLS Protocol 1.0,1.1,1.2,1.3.


    You will want to get:
    The location of TLS in the registry: Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\
    Download the RegKeyToMOF.exe tool from: main

    2). create collection
    Collection: Namespace = \.\root\cimv2; Query = SELECT __CLASS, __PATH, __RELPATH, KeyName, Enabled; Timeout = 600 secs.

    1 person found this answer helpful.

  3. Dev99 00 41 Reputation points

    in hardware inventory AMT --> TLS mode is enabled by Default so will it collect all data.

  4. Dev99 00 41 Reputation points

    How to achieve this Goal , can you share complete steps with Query...thanksss...!!!

    0 comments No comments