Enable Windows 2008 R2 to accept cast on enum SslProtocols 3072

Question

Enable cast (System.Security.Authentication.SslProtocols)3072) on window server 2008 r2 without patch

I have a function written in c# framework 2.0 that performs authentication by setting the tls 1.2 protocol using an enum, on windows 10 and windows server 2012 works while on windows server 2008 R2 only works if updated with the latest patches. I need not to perform the updates, is there any registry key to enable the enum on the c# code that I report below?

the 2.0 and 4.5 .Net framework are installed on the server

SslStream sslStream;

sslStream = new SslStream(clientSocket.GetStream(), false, certificateValidator);

// Authenticate the server
try
{
    sslStream.AuthenticateAsClient(hostname,null,((System.Security.Authentication.SslProtocols)3072), false);
}
catch (Exception ex)
{
    throw ex;
}

invalid value specified in 'SslProtocolType' enumeration

The servers are under a policy that does not update, do not have any internet connection. what I ask is if there is a registry key that validates the enumeration ... the tls.12 protocol works to send mail but does not read mails, remember that the framework used is 2.0 — Angelo, Jan 04 '19 at 19:57
Simply adding a registry key isn't whats making it work. I'm 99% sure the update include security updates to dlls and other items that allow it to work. — Erik Philips, Jan 04 '19 at 20:11
I enabled sending mail in tls1.2 simply adding a line in the registry (HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client & Server) I thought that even for this problem could be done — Angelo, Jan 04 '19 at 20:26
Running a 10+ year old unpatched operating system is a profoundly bad idea regardless of the circumstances. — Daniel Mann, Jan 04 '19 at 20:27

JM123 · Answer 1 · 2019-01-04T20:22:00.270

0

I've used

https://www.nartac.com/Products/IISCrypto

To enable and disable specific cipher on windows server. This will be a nice UI that will handle all the registery key for you.

edited Jan 04 '19 at 20:22

answered Jan 04 '19 at 20:09

JM123

167
1
12

This is indeed an excellent tool, but it doesn't answer the question **at all**. – Ross Presser Jan 24 '20 at 19:51

score 0 · Accepted Answer · answered Jan 08 '19 at 13:07

0

I solved the enum cast problem by installing the KB4471987 update (in detail on kb4470641).

answered Jan 08 '19 at 13:07

Angelo

101
1
9

Enable Windows 2008 R2 to accept cast on enum SslProtocols 3072

2 Answers2