1

After an security audit of our Windows Server farm we got this notice:

Disable support for any RC4-based cipher suites.

The most information I can find is this

Microsoft Technet Security Advisory 2868725: Recommendation to disable RC4

Does anyone have any further instructions or recommendations beyond this?

Thanks much

Ben Butzer
  • 111
  • 1
  • 5
  • 2
    For server software, you have much better chances of getting good answers on [sf] instead. I am voting to migrate this. Please do not repost the same question elsewhere. – user Jul 27 '15 at 19:05
  • Sorry, I thought this was the place. – Ben Butzer Jul 27 '15 at 19:32
  • No worries, you could have done worse! It isn't *wrong* to post it here, but it's a *better* fit for Server Fault. Rule of thumb: corporate sysadmin type questions go onto SF, home user type questions go onto SU. – user Jul 27 '15 at 19:33
  • Thanks, I did not even know about Server Fault. – Ben Butzer Jul 27 '15 at 19:34

1 Answers1

0

The Server Fault Site has an answer for this. Windows 2008 R2 Standard server - how to disable RC4

The real key seems to be to use the IIS Crypto app from Nartac, which was an app I was apprehensive to install and try on a publicly facing server.

Community
  • 1
Ben Butzer
  • 111
  • 1
  • 5