3 Ways to Enable TLS 1.2 on All Windows Versions in 2022

Transport Layer Security (TLS 1.2), also known as Transport Layer Security, is an encryption protocol designed to keep user data secure when it is transmitted over a network. The TLS 1.2 protocol is similar to SSL (Secure Sockets Layer).

Transport Layer Security (TLS 1.2) is used primarily by client-server applications to share data and information across networks without security holes or information leakage.

It provides confidentiality, authenticity, and integrity through the use of certificates between computer applications that share information.

How to check if TLS 1.2 is enabled?

Transport layer security was introduced as an Internet Engineering Task Force in 1999 and has continued to evolve since then, with the introduction of TLS 1.2 in 2008.

Transport layer security has two layers of operations: TLS handshake protocol and TLS records. TLS operations are at the application layer.

TLS 1.2 is more than just an upgrade; it’s an important step to ensure secure data sharing. Older versions of transport layer security have become vulnerable, and security holes can be easily avoided using TLS 1.2.

Make sure to update the TLS version to TLS 1.2. and TLS 1.2. Enable on your system to protect your data.

TSL 1.2 and 1.3 are enabled by default on Windows 11. You can also read this article to learn more about how the protocol works.

Expert Tip: Some PC problems are difficult to solve, especially if the repository is corrupted or Windows files are missing. If you are having trouble fixing errors, your system may be partially corrupted. We recommend installing Restoro, a tool that can scan your machine and determine where the fault lies.
Click here to download and start repairing.

The quickest way to check if TLS 1.2 is enabled on your computer is to search for the registry key to see if it exists. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client\Enabled and its corresponding value 1.

What is the command to check TLS version in Windows?

1. Press Windows X.
2. SelectWindows Powershell.
   
3. Enter the following command: Get-TlsCipherSuite.
   
4. Press Enter. Yes

You can check the version of TLS 1.2 using the following command in Windows: openssl s_client -connect www.google.com:443 -tls1_2. If you get the certificate chain and handshake you will be able to tell if the version is supported. Otherwise, you will receive a handshake error message.

How do you check which TSL protocol is being used?

1. Press Windows R.
   
2. Press Enter.
3. In the Internet Properties window, click the Advanced tab.
   
4. Scroll to the bottom of the page and check which TLS protocol was viewed.
   

There are different TLS protocols, the latest is 1.3. You can see which ones are currently in use by noting which checkboxes are selected.

How to enable TLS 1.2 on Windows?

➡ How to enable TLS 1.2 on Windows 11?

1. ClickWindows R.
   
2. Press Enter.
3. In the Internet Properties window, click the Advanced tab.
4. Scroll down and check the TSL protocol in use
   
##Select
5. Apply.
Close the browser window and restart your Google Chrome browser.

➡ How to enable TLS 1.2 on Windows 10?

Open Google Chrome.
1. Press
2. ALT F.
Select
3. settings.
   
Click
4. Advanced.
   
Scroll down and select
5. System.
Click
6. to open your computer’s proxy settings.
Click
7. Internet Options and select Advanced.
Scroll down and click
8. Security and check the Use TLS 1.2 box.
   
Click
9. OK.
Close the browser window and restart the browser.

➡ How to enable TLS 1.2 on Windows 7?

Go to the status bar and click the Windows button. Click Run.
1. Type
2. Regedit in the run page.
   
Click OK to access the Registry Editor.
3. Clicking the
4. OK button will give you access to Windows Options
For Windows 7, enter this registry key:
5. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet \Control\SecurityProviders\SCHANNEL\Protocols.
   
Click the "Protocols" folder, click "
6. New" and select from the drop-down menu Select "Key".
   
After completing step 5, a new folder named
7. New Key #1 will be created.
Rename the folder to TLS 1.2.
8. Right-click the TLS 1.2 tab and click
9. New.
Select a key from the drop-down menu.
10. When Step 7 is completed, a new folder named New Key #1 will be created.
11. Rename the folder to Client.
12. 
    
Right-click the client key, click
13. New, and select a DWORD (32-bit) value from the drop-down list.
Click on the DWORD (32-bit) value and a new file named
14. "New Value #1". Change the name to Disabled by default.
15. After completing all steps, restart the system to activate the changes.

➡ How to enable TLS 1.2 on Windows Server 2019?

1. Press the Windows R button to access Regedit.
2. Press Enter.
3. NavigationComputer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\
4. Right-click the right pane and clickNew.
5. Select key.
6. Name the new key TLS 1.2 and click on it.
7. Click New.
8. Create a new key named Client.
9. Right-click the client key and click New.
10. Select a DWORD (32-bit) value .
11. Name the new file DWORD DisabledByDefault.
12. Double-click it to open its properties
13. Make sure the base is hexadecimal and the value is zero.
14. Create another new DWORD file and name it Enabled.
15. Double-click it to make sure the base is hexadecimal and the value is one.
16. Repeat the same steps for the server key using the exact words: DWORDS and Values.
17. Close the registry.
18. Restart the system.

➡ How to enable TLS 1.2 on Windows Server 2016?

1. First, open the Windows Start menu.
2. Type Regedit in the search bar to open it.
3. Make sure to back up your current registry before making any changes.
4. In the registry, go to Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols

4. Right click on the empty space in the right pane and click New.
5. Select key.
6. Name the new key TLS 1.2
7. Right-click on the empty right pane again and create two new keys named Client and # New key for ##Server.
Select the Client key, click
8. New, then select a DWORD (32-bit) value.
Click on the DWORD and rename it to
9. DisabledByDefault.
Right click on it, change the base to hexadecimal and set the value to zero.
10. Create another
11. DWORD and name it enabled.
Change the base to
12. hex and set the value to one.
13. Repeat the same steps for the server key and create DWORDS with the same values.
Close the registry and restart your server.

➡ How to enable TLS 1.2 on Windows Server 2012 R2?

Start the
1. regedit.exe program.
Enter path:
2. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727.
Create a new entry named
3. SystemDefaultTlsVersions.
Set the DWORD value to
4. -.
Create another entry named
5. SchUseStrongCrypto and set the DWORD value to one.
Go to path:
6. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319.
Create an entry and name it
7. SystemDefaultTlsVersions.
Set the DWORD value to
8. -.
Make the same changes to the 64-bit operating system location:
9. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v2.0.50727.
Please create a new entry, And name it
10. SystemDefaultTlsVersions.
Set the DWORD value to
11. -.
Create another entry and name it
12. SchUseStrongCrypto and set the DWORD value to one.
Go to
13. HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319.
Perform the same modifications as in the earlier position.

How to upgrade from TLS 1.0 to TLS 1.2

Search for
1. servers from the top menu bar.
From the list of options, select the server of your choice.
2. Go to
3. Server Management and select Settings and Packages.
Click the
4. Advanced tab and scroll down to the Nginx box.
5. TLS VersionsA list of selected versions will be displayed. Click Edit to make changes.
Select the desired protocol as per the requirement and click
6. Save changes.

Older TSL versions are not as secure as the latest versions. Therefore, you can also read more about disabling the TSL 1.0 protocol. If your device is running the latest Windows version, version 1.3 will appear.

Sometimes, Windows 11 users may encounter TSL errors. This tutorial provides a comprehensive solution.

As mentioned previously, TSL 1.3 is automatically enabled on modern Preview builds of Windows. As far as Internet security deployment protocols go, TSL 1.3 is the standard. Its security protocols are formulated in a way to facilitate endpoint-to-endpoint data transfer. That is, it provides an additional layer of security for client-server communication.

The new protocol resolves most of the flaws of the previous version, making the encryption algorithm obsolete. As a result, the handshake protocol (client authentication) is greatly encrypted and enhanced.

In addition, TSL 1.3 has significant privacy improvements. This means that the network's visibility into your user details and information is severely limited.

The above is the detailed content of 3 Ways to Enable TLS 1.2 on All Windows Versions in 2022. For more information, please follow other related articles on the PHP Chinese website!