Skip to main content

Posts

Showing posts from August, 2014

Enabling TLS 1.2 on IIS 7.5 and 256-bit Cipher Strength

Usually website hosted on Microsoft IIS are used TLS 1.0/1.1 as default. So, your system will not get good audit result if your system was audited by auditor. To avoid this kind of situation, we need to prepared before auditing or fixed the issue after auditing. Usually you will need to use Windows Powershell with complex command line. Furthermore, you still need to do a lot of steps such as Group Policy Settings for Cipher Strength, SSL Setting, SSL Cipher Suite Order. So, are you really happy to do this kind of steps or do you want one step solution for this? I believe you want one step solution if possible as like me - Lazy Bum System Administrator. :D OK. Just go ahead to this website https://www.nartac.com/Products/IISCrypto/ and download the IIS Crypto GUI version as match of your system requirement. Then Run it and check/uncheck what you need for your system. Done. Your task has been completed as you wish. Do not forget that you can scan and check th

Installing and activating SSL Certificate on Cisco ASA Firewall

If your firewall outside interfacing is facing outside network for remote management or using SSL VPN, you should deploy SSL certificate rather than self-signed certificate to get better security. So, below steps can help you at "how to install and activate ssl certificate" on your Cisco ASA Firewall. You only need 3 steps to do that. 1) Create TrustPoint and Generate a CSR 2) Enroll for Certificate 3) Install