TLS Protocol Based Collection in SCCM

Dev99 00 41 Reputation points
2022-11-23T17:00:07.12+00:00

HI everyone,
I am going to create collection in SCCM based on TLS Protocol 1.0,1.1,1.2,1.3, can anyone share Query to collect automatically machines on which TLS are disabled and on those machine on which these protocol are enabled.

Need help..

Thanks....

Microsoft Configuration Manager
0 comments No comments
{count} votes

4 answers

Sort by: Most helpful
  1. Garth Jones 1,656 Reputation points
    2022-11-23T17:35:45.557+00:00

    TLS settings are inventoried by ConfigMgr. You need to first inventory those setting before you can create a collections.

    1 person found this answer helpful.

  2. TrudaZeng-MSFT 766 Reputation points
    2022-11-24T08:30:43.253+00:00

    To achieve this goal, follow this step, according to the following article.

    1). inventory the devices with TLS Protocol 1.0,1.1,1.2,1.3.

    Guide:
    use-sccm-to-find-the-excluded-apps-in-microsoft-365-apps-or-office-365-proplus-for-custom-reporting
    how-to-get-registry-information-into-hardware-inventory

    You will want to get:
    The location of TLS in the registry: Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\
    Download the RegKeyToMOF.exe tool from: main

    2). create collection
    Collection: Namespace = \.\root\cimv2; Query = SELECT __CLASS, __PATH, __RELPATH, KeyName, Enabled; Timeout = 600 secs.

    1 person found this answer helpful.

  3. Dev99 00 41 Reputation points
    2022-11-23T19:47:34.73+00:00

    in hardware inventory AMT --> TLS mode is enabled by Default so will it collect all data.


  4. Dev99 00 41 Reputation points
    2022-11-23T19:53:09.997+00:00

    How to achieve this Goal , can you share complete steps with Query...thanksss...!!!

    0 comments No comments