This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 37%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
Hello everyone,
Not sure if I have been posting in the correct forum but I need some help regarding disabling certain cryptography algorithms (eg. 3DES, DES, RC4) in Windows Server 2019 and Windows 10 21H1.
Some algorithms are quite straight forward to disable, can be done by editing registry.
However, there are some algorithms I am not able to find a way to disable them after searching the internet. The following are the algorithms:
Digital Signature Standard (DSS)
Rijindael
Camellia
Kasumi
Blowfish
SAFER
Whirlpool
RIPEMD
RSA, only allow key-size 2048 bit and above (>2048bit)
SHA-3, only allow key-size 384 bit and above (>384 bit)
May I know how can I disable them ?
Thank you in advace
Hello @Learning_Windows
There is tool available named IIS Crypt from which you can disable cipher and some legacy protocols easily from GUI.
If the reply was helpful, please don’t forget to upvote or accept as answer.
Hello,
Thank you for the tool. I have tried the tool and I would say it is very useful because you can disable those cipher and protocols within the programs.
However, I am not able to find those options to disable those algorithms I have mentioned (Eg. Rijindael, SAFER).
Just to check, is there any valid registry keys to disable those mentioned algorithms in Windows in the first place ?
Because I have searched online but I am not able to find those mentioned registry keys in windows.
Thank you again