Configuring IIS 7.5 to be FIPS 140.2 compliant

ssl tls iis-7.5 fips-140-2

It means that the server supports SSLv2 handshake, even though it may not support SSLv2 itself. Essentially it's an optimization. Instead of a client first requesting SSLv2 (with a SSLv2 handshake) and failing (if the server does not support it), then having to request SSLv3 or better (with a SSLv3 handshake), the client can use the SSLv2 handshake to indicate support for newer protocols.

http://sourceforge.net/mailarchive/forum.php?thread_name=20100629171623.43012oj4b2hgrzi8%40webmail.mxes.net&forum_name=ssllabs-discuss


You can confirm that it is an issue with the SSL Labs Checker by changing the configuration in your browser to only accept SSL 2.0. If you can connect to your site, then SSL 2.0 is still enabled. Otherwise, it is disabled.

Related

Easy way to install XP on several laptops?
How can i change disks from foreign state using OMSA
Active Directory - forest trust between forests with same name?
Script to recreate Outlook 2010 mail profile
virtual sftp users with openssh
sudo and sudo -i access features
How can I rotate PHP Log files on Windows Server 2003?
Cannot ssh into cisco switch: Invalid key length
IIS 7.5 FTPS external access - 534 Policy requires SSL
Couldn't find package gitolite on Ubuntu 10.04
Can I host multiple sites on a single Linode server a la Dreamhost?
apache mod proxy to another domain with relative paths