- Open the Registry Editor and run it as administrator.For example, in Windows 2012 or 2008r2:
- On the Start screen type regedit.exe.
- Right-click on regedit.exe and click Run as administrator.
- In the Registry Editor window, go to:HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlSecurityProvidersSchannelProtocols
- In the navigation tree, right-click on Protocols, and in the pop-up menu, click New > Key.
- Name the key, SSL 3.0.
- In the navigation tree, right-click on the new SSL 3.0 key that you just created, and in the pop-up menu, click New > Key.
- Name the key, Client.
- In the navigation tree, right-click on the new SSL 3.0 key again, and in the pop-up menu, click New > Key.
- Name the key, Server.
- In the navigation tree, under SSL 3.0, right-click on Client, and in the pop-up menu, click New > DWORD (32-bit) Value.
- Name the value DisabledByDefault.
- In the navigation tree, under SSL 3.0, select Client and then, in the right pane, double-click the DisabledByDefault DWORD value.
- In the Edit DWORD (32-bit) Value window, in the Value Data box change the value to 1 and then, click OK.
- In the navigation tree, under SSL 3.0, right-click on Server, and in the pop-up menu, click New > DWORD (32-bit) Value.
- Name the value Enabled.
- In the navigation tree, under SSL 3.0, select Server and then, in the right pane, double-click the Enabled DWORD value.
- In the Edit DWORD (32-bit) Value window, in the Value Data box leave the value at 0 and then, click OK.
- Restart the server.
- You have successfully disabled the SSL v3 protocol.
A Site of Information and Ideas