Hi @cristopheB ,
first question, as I understand TLS, TLS 1.1 / TLS 1.2 come with update on windows.
Yes, an upgrade to TLS is mentioned in some Windows server KB updates. You'll need to look specifically at what's updated. If your Windows server has never been updated, the version that supports TLS will be as shown in this document.
second question, what we risk if we unactive SSL and TLS is not present ?
TLS originally evolved from Secure Socket Layers (SSL). TLS encryption helps protect web applications against data tampering and eavesdropping and is becoming standard practice for most websites. SSL/TLS protocols were developed to respond to the increasing number of security threats and the need for encryption from both client and server ends. Without TLS, sensitive information transferred over the internet such as login credentials, personal information, and credit card numbers are vulnerable to theft. It would also be possible for unknown third parties to monitor emails, browsing habits, and direct message correspondence.
You can check TLS version and active status in browser.
for all client we used(android app, chrome client, ...) who connect to these server how to verify if TLS is well active ?
I'm not sure android app. But chrome client can check it in browser like the image above. It will show TLS 1.x when it is active.
Last question, if we remove / unactive SSL on windows its for all server (IIS, computer, ..)
It only for current server which you remove SSL. Other servers which didn't remove SSL won't be affected.
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.