Secret ingredients to quality software

We open source.Loving SSW Rules? Star us on GitHub. Star

© 1990-2025 SSW. All rights reserved.

FEEDBACK / SUGGEST A FEATURE|TERMS AND CONDITIONS|

This website is under CONSTANT CONTINUOUS DEPLOYMENT. Last deployed 16 minutes ago on Dec 23, 2025 at 04:31 UTC (Build # 20-a891836)

Powered by Azure and GitHub

SSW Rules
Security
This rule

Do you disable insecure protocols?

Loading last updated info...

Open in ChatGPT

For better server security (especially regarding public facing servers), certain security protocols and ciphers should be disabled.

Using a tool called "IIS Crypto 3.2" by Nartac, these protocols can be easily disabled instead of having to manually edit the Registry Keys.

Download IIS Crypto 3.2 (https://www.nartac.com/Products/IISCrypto/Download)
Run this on the server you wish to lock down
Select the best practices button

✅ Figure: Good example – TLS should be enabled and SSL should be disabled

Ensure that TLS 1.0 and TLS 1.1 is also disabled | hit apply
The server will need to be rebooted before the settings take effect

Categories

Authors

Need help?

SSW Consulting has over 30 years of experience developing awesome software solutions.