Enable TLS 1.2 on TAC server

PortSys recommends enabling and using the TLS 1.2 protocol on your server.  TLS 1.2 has improvements over previous versions of the TLS and SSL protocol which will improve your level of security.  If the TAC server has not enabled TLS1.2,  This KB article will describe the process to enable this.  

Read more about how to disable TLS 1.0 & TLS 1.1 HERE.

IMPORTANT: PortSys recomend to keep necessary backup before doing any changes to registry on the server.

  1. Browse to the following registry key on the TAC server:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols
  2. Right click on the Protocols folder and select New and then Key from the drop-down menu. This will create new folder.  Rename this folder to TLS 1.2.
  3. Right click on the TLS 1.2 key and add a new key underneath it.
  4. Rename the new key as:
    • Server
  5. Right click on the "Server" key and select New and then DWORD (32-bit) Value from the drop-down list.
  6. Rename the DWORD to DisabledByDefault.
  7. Right-click the name DisabledByDefault and select Modify... from the drop-down menu.
  8. Ensure that the Value data field is set to 0 and the Base is Hexadecimal.  Click on OK.
  9. Reboot the server.

Your server should now support TLS 1.2.