Agent Guidance Administrator Guide

Please email support@creovai.com for omissions or errors.
×
Menu

Enabling TLS 1.2 Under Windows

 
Note: this article relates to Microsoft Windows Server and not the Agent Guidance product. This article is offered as advice and should be carefully considered for your environment before any changes are made.
 
You can force Microsoft .NET applications to utilise TLS 1.2 and strong encryption channels over weaker ones via a Windows server wide registry setting. Agent Guidance is compatible with this setting, and will utilise it where compatible if set. If other applications are present on the same Windows server, they will need to be checked prior to any changes. There is a Microsoft Security Bulletin giving an overview to this topic.
 
The registry change required to apply this is detailed in this Microsoft Security Advisory, under the "Update for Disabling RC4 in .NET TLS" heading in the "Suggested Actions" section. If utilising a 64-bit system, it is recommended to deploy the specified changes for both 64-bit and 32-bit applications.
 
Before disabling weaker TLS versions on the server, the list of Agent Guidance Application elements that support TLS 1.2 should be reviewed.