Monday, September 26, 2016

Fixing Nessus POODLE Finding through GPO

How to fix the  Nessus POODLE Finding through GPO.

Click Start -> Control Panel -> Administrative Tools -> Group Policy Management

Step 1:

Open Computer Configuration -> Policies -> Administrative Templates -> Windows Components -> Internet Explorer - > Internet Control Panel -> Advanced Page -> Turn off Encryption support -> Enabled

Should be set to:  User TLS 1.0, TLS 1.1, and TLS 1.2

Step 2:

Click Computer Configuration -> Preferences -> Windows Settings -> Registry -> Right Click, New Registry Item.

Reg Item 1:

Action: Update
Hive: HKLM
Key Path: SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Client
Value Name: Enabled
Value Type: REG_DWORD
Value Data: 0

Reg Item 2:

Action: Update
Hive: HKLM
Key Path: SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 3.0\Server
Value Name: Enabled
Value Type: REG_DWORD
Value Data: 0

ShareThis