Question Of The Week

Question: A Windows Relay Server is allowing the use of weak encryption protocols and ciphers (SSLv2, SSLv3, RC4). How is this resolved?

A: Allowed encryption methods can be defined in the Relay server’s rs.config file.

B: Allowed encryption methods are selected for each website individually in the port binding options with the IIS Manager.

C: The registry must be edited to explicitly disallow weaker encryption methods for all appliciations using SCHANNEL.

D: This is a known issue with SSL/TLS and can only be fixed on the client slide for each device.

Solution: http://service.sap.com/sap/support/notes/2271219