Jump to content

Setting Powershell's default SChannel protocol to TLS1.2 via GPO

Guest BaconBandit

By Guest BaconBandit
in Microsoft Products Support & Discussions

 Share

Recommended Posts

Guest BaconBandit

Guest BaconBandit

Posted
Posted

Hi all,

 

I apologize if this isn't the correct forum "bucket" for a question like this.

 

This question relates to Windows 10 Ent (Build 1903), Server 2016 (Build 1607 primarily)

 

 

I'm deploying an change/config management application. As part of the deployment, we run a command that invokes a web request from the CM server to download installation files/scripts. Through copious amounts of troubleshooting, I found that Powershell by default uses TLS 1.0. The CM server is configured such that it only negotiates to TLS 1.2. The installation scripts works... IF I use the below string in the Powershell script to set the environment to use TLS 1.2.

 

[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12

 

Is the a registry setting or ADMX template that I can use to push (ABOVE SETTING) to the whole domain vice including it in scripting? I found a couple forums that referenced in HLKM:SYSTEM\ControlSet001\ and HKLM\Wow6432Node. I'm hesitant to change SChannel Protocols in those locations because I THINK they're for the whole system, not just Powershell.

 

 

I don't always post on forums, but when I do I chose technet...

 

More...

  • Replies 0
  • Created
  • Last Reply

Popular Days

Popular Days

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...