On the right hand side, double click on SSL Cipher Suite Order.By default, the “Not Configured” button is selected.0);function Jh(a) ;function Uh() C(Uh,vh); Uh.prototype[th]=! 1,gi=new $h;function hi() ;function ii(a) ;function ji(a) function li() li.prototype.reset=function();var mi=new Vh(function(),function(a));function ni(a,b,c) function oi(a) ji.prototype.then=function(a,b,c);ji.prototype.$goog_Thenable=! Rf=q("Ka");Event Listener=function(a,b,c,d);r.remove Event Listener=function(a,b,c,d);r. Rb=function(a) ;function Xh(a) var Yh;function Zh() ;function $h() var bi=new Vh(function(),function(a));$h.prototype.add=function(a,b);$h.prototype.remove=function();function ai() ai.prototype.set=function(a,b);ai.prototype.reset=function();function ci(a,b) var di;function ei() var fi=! A browser can connect to a server using any of the options the server provides.If your site is offering up some ECDH options but also some DES options, your server will connect on either.
Unfortunately, by default, IIS provides some pretty poor options. Before we start, you might want to know where your site stands.
Providing a better cipher suite is free and pretty easy to setup.
Just follow this step by step guide to protect your users and your server. It has a user friendly graphical interface that makes configuration a breeze. IIS really has a lot going for it, but really falls flat when it comes to security defaults. Your browser initiates a secure connection to a site.
Your browser goes down the list until it finds an encryption option it likes and we’re off and running. (No one says that.) The fatal flaw in this is that not all of the encryption options are created equally.
Some use really great encryption algorithms (ECDH), others are less great (RSA), and some are just ill advised (DES).