'Windows server 2008 uses outdated cipher suites?

the default cipher suite of windows 2008: AES_CBC is out of date. I tried to update the patch in exchange for a new cipher suite: AESGCM. Failed, I don’t know if Microsoft provides AES*_GCM new cipher suite patches on windows 2008.

iis-7.5tls1.2


Solution 1:[1]

Windows Server 2008 R2 don't support ECDHE+RSA+AESGCM cipher it just support ECDHE+ECDSA+AESGCM OR DHE+RSA+AESGCM so you can't use ECDHE with gcm cipher if you use RSA certificate

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1

Related Questions

HTTP Error 404.15 -Not Found

Prevent Visual Studio from automagically changing the physical path of IIS virtual directory?

IIS 7.x server error with HTTPS deployement

TFS 2018 Server Web Services keeps shutting down and restarting every minute or so with message "BinDirChangeOrDirectoryRename"

How to serve a Vue application over HTTPS for local development

TLS 1.2 - Alert Level - Fatal - Description Protocol Version

MsSQL driver which could not establish a secure connection by using Secure Sockets Layer (SSL)?

TLS 1.2 + Java 1.6 + BouncyCastle

Enabling TLS-1.2 on embedded Jetty

Set up Google cloud certificates for Postgresql database ( hostname mismatch )

Java HttpsURLConnectionImpl.getOutputStream() error : java.net.SocketException: recv() failed, errno = 104 Connection reset by peer

Sending Email using Outlook / Office365 with Laravel - Failed to authenticate on SMTP server

Forcing .NET application to use TLS 1.2 or later

How to enable TLS on Teradata Express

"SSL.CERTIFICATE_VERIFY_FAILED: Self signed certificate in certificate chain" in python with PROTOCOL_TLS_CLIENT