Check if TLS 1.2 is enabled

How to check if TLS 1.2 is enabled?

  1. If the registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client\DisabledByDefault is present, the value should be 0.
  2. If the registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client\Enabled is present, value should be 1.

  3. Check if TLS 1.2 is set as the default secure protocol in WinHTTP for Windows versions Windows Server 2008 R2, Windows Server 2012, and Windows 7. 
How to check if TLS 1.2 is the default secure protocol in WinHTTP:
Compatible versions: Windows Server 2008 R2, 2012, and Windows 7
  1. Check Microsoft update 'kb3140245' is installed.
  2. Check if the below registry key contains the value '0x00000A00' or '0x00000800':
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp\DefaultSecureProtocols

  3. If it is a 64 bit machine, check 'Wow6432Node' path also:
    HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp\DefaultSecureProtocols
If the registry key is not present, please add the registry key as mentioned in the Microsoft document.

Related Articles:

    • Related Articles

    • How to check if IPSLA is enabled on a network device

      From the machine in which your Site24x7 On-Premise Poller is installed, open the Command Prompt as an administrator (Windows) or the Terminal with root privileges (Linux). Go to the directory where the On-Premise Poller is installed. Navigate to the ...

    • List of IPv6 enabled Monitors in Site24x7

      The following Site24x7 Internet facing monitors enable you to test your IT infrastructure over our 60+ IPv6 enabled locations:   Website  Web Application (URL-Sequence)  Port (Custom Protocol)  POP Server SMTP Server  Ping  DNS Server FTP Server  ...

    • FAQs on upgrading to TLS version 1.2

      What is TLS? TLS is a secure way of client-server data communication. The TLS protocol protects the confidentiality and integrity of the information passed between two systems. Why migrate to TLS version 1.2? As Site24x7 is a SaaS-based product, it ...

    • Why is my Windows server monitor in DOWN status, even after enabling TLS version 1.2

      If the OS version is Windows 2008 R2 & above, check if: https://fancyssl.hboeck.de/ is accessible in IE from that server. The machine is rebooted after applying the TLS 1.2 Microsoft update. All the steps (particularly steps 5 & 6) mentioned in this ...

    • Troubleshooting steps if a resource check is not added or when no alerts are received when a check fails

      Common points to be remembered: Ensure the option Alert when a resource check fails is set to Yes in the associated server's threshold profile to trigger a TROUBLE alert for the configured check.   Check if you have sufficient licensing. The total ...