This repository has been archived by the owner on May 24, 2023. It is now read-only.

sec03

Jump to bottom

My-Random-Thoughts edited this page Oct 28, 2017 · 1 revision

sec-03-schannel-p3-keyexchangealgorithms (Enabled)

Ensure key exchange algorithms are set correctly. Settings taken from https://www.nartac.com/Products/IISCrypto/Default.aspx using "Best Practices/FIPS 140-2" settings.

Input Values

KeyExchangeAlgorithms - "LIST" - Key Exchange Algorithms that should be used

Example

KeyExchangeAlgorithms = ('Diffie-Hellman', 'ECDH', 'PKCS')

Input Descriptions

None

Result And Messages

PASS
All key exchange algorithms set correctly
WARNING
FAIL
One or more key exchange algorithms set incorrectly
MANUAL
NA

Applies To

All Servers

Required Functions

None

Home | Quick Start ||| Accounts | Drives | HyperV-Host | Network | Regional | Security | SQL | System | Tooling | Virtual