IIS 2008R2, SSL cipher issues, dropped connections
|Reported by:||Ross||Owned by:|
|Keywords:||iis 2008R2 cipher SSL||Cc:|
|Component version:||Operating system type:||Windows|
|Operating system version:|
On IIS 2008 R2, with an SSL connection, with PCI compliant ciphers only, a variety of broken and dropped errors occur.
Server set to PCI compliant ciphers only (RC4 128, 3xDES 168, AES 128, AES 256).
On v220.127.116.11: wont connect at initial start up; server drops the connection with this error: An TLS 1.2 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed. i.e. no matching Cipher.
Note on 18.104.22.168, if we allow the non PCI ciphers, it does connect, but, then fails on upload transfers, with "invalid transfer" message in the log (i don't know which cipher its selected).
On older 3.53; with the AES ciphers in the top of the list, it will connect, but fails the file upload transfer. With RC4 cipher as the first choice (beast ordering), it fails outright and never connects.