How to enable TLS 1.2 on Windows Server 2008R2
- Start the registry editor by clicking on Start and Run. Type in "regedit" into the Run field.
- Browse to the following registry key:
- Right-click on the Protocols folder and select New and then Key from the drop-down menu. This will create a new folder. Rename this folder to TLS 1.2.
- Right-click on the TLS 1.2 key and add two new keys underneath it. Rename the two new keys as Client and Server.
- Right-click on the Client key and select New and then DWORD (32-bit) Value from the drop-down list. Rename the DWORD to DisabledByDefault.
- Right-click the name DisabledByDefault and select Modify... from the drop-down menu. Ensure that the Value data field is set to 0 and the Base is Hexadecimal. Click on OK.
- Create another DWORD for the Client key as you did in Step 5. Rename this second DWORD to Enabled.
- Right-click the name Enabled and select Modify... from the drop-down menu. Ensure that the Value data field is set to 1 and the Base is Hexadecimal. Click on OK.
- Repeat steps 5 to 8 for the Server key (by creating two DWORDs, DisabledByDefault and Enabled, and their values underneath the Server key).
- Reboot the server.
The server should now support TLS 1.2.