Windows Server 2012: how to prevent IIS from choosing SHA-1 for connections?

ssl windows-server-2012 cryptography hash iis

Solution 1:

A way to overcome this is to:

  1. Disable everything except TLS 1.0 in server protocols in IISCrypto. Don't touch client protocols.
  2. Since Edge doesn't allow TLS 1.0 and TLS 1.1 by default, apply the following which will stop working in version 91 in a few months.
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Edge]
"SSLVersionMin"="tls1"

Another option would be to force the website in IE11 compatibility mode in Edge, IE11 is much less picky.

Related

Change name of GPT Partition (not label) under Windows from command line
What happens when a FSMO holder goes down?
Three Single drive Raid 1 vs JBOD
Postfix, schedule batches of email to be sent
How can I disable "Subject Alternative Name" from being included in Certbot Let's Encrypt certificates?
SAS Drive Upgrade [closed]
Enabling Hibernation of Existing VM on AWS
Issue with connecting several remote Windows 10 clients to Strongswan with lets-encrypt certificates (IKEv2-EAP)
Unable to create Import Jobs in Information governance of Microsoft 365 compliance in Exchange Online
Is there a way to find a specific glyph in Nerd Fonts?
Google nest wifi and wifi repeater
Will upgrade to SSD guarantee zero Application Not Responding Errors?