This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

TLS 1.0 Lansweeper Report

Sam_C
Engaged Sweeper

‎03-25-2019 07:21 PM

Hello,
Is there a Lansweeper report that would display servers that might still have TLS 1.0 enabled on them? Thanks.
Labels:
0 Kudos
1 REPLY 1
JacobH
Champion Sweeper III

‎03-26-2019 01:24 PM

I posted on this topic with an hold handle... but you would need to add a registry key...


From: https://www.lansweeper.com/forum/yaf_postst15025_Handy-files-or-registry-items-to-scan.aspx#post5106...



Make sure TLS 1.0 is disabled on servers:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0

Valuename: Enabled

Value = 0 (Disabled) Value = 1 (Enabled)

Then to start off, you can look at the report - Windows: Registry Scanning results and modify the WHERE clause to add:

WHERE

tblRegistry.regkey like '%HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0%' and tblRegistry.valuename = 'Enabled'
0 Kudos

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now