How to determine list of accepted TLS protocols | MDaemon Technologies, Ltd.

How to determine list of accepted TLS protocols

J

Jackson
2/3/25, 4:29 PM

I am trying to troubleshoot an issue with TLS handshakes for a client. How do I determine what protocols that Security Gateway accepts? Also, is there a way to enable/disable or add to this list?

I can't find this granularity anywhere in the software, so I'd appreciate help.

Thanks!

0 likes 0 likes

4
Posts

34
Views
Matthew Staff
2/3/25, 5:21 PM

SecurityGateway uses the Windows Schannel API which uses the OS-level configuration for enabled TLS versions and cipher suites. The IIS Crypto Utility (by Nartac Software) can be used to configure which TLS versions and cipher suites are enabled. What operating system is SecurityGateway running on?

I have found WireShark to be helpful in these cases as you can see what the server is offering and what the client is willing to accept.

Matthew McDermott
Senior Software Developer

MDaemon Technologies
Simple Secure Email

0 likes 0 likes
s

stéphane
2/4/25, 7:07 AM

I confirm that Matt say. I use IIS Crypto to set my TLS level and stop the weak version on my SG server. It's a must to have.... Just keep in mind taht IIS Crypto need a reboot tot apply the change...

0 likes 0 likes
J

Jackson
2/5/25, 11:25 AM

@Matthew Windows Server... I was able to check and verify everything through IIS Crypto. Thank you all for your help!

0 likes 0 likes

Please login to reply this topic!

Copyright © 1996-2025 MDaemon Technologies, Ltd. All trademarks are property of their respective owners.