强制使用TLS1.2进行Visual Studio调试 [英] Force TLS1.2 for visual studio debugging

问题描述

我有一个网站，当我禁用TLS 1.0/1.1时失败了.我想使用Visual Studio和集成的IIS Express对其进行调试.

I have a website that fails when I disable TLS 1.0/1.1. I want to debug it using Visual Studio and integrated IIS Express.

在这种情况下如何禁用TLS1.0/1.1强制TLS 1.2?

How to disable TLS1.0/1.1 in this case to force TLS 1.2?

推荐答案

在Windows中，TLS版本(和加密套件)是在注册表中全局定义的.在线上的各种文章都对此进行了介绍.例如.

In Windows TLS versions (and cryptographic suites) are defined globally in the registry. This is covered by various articles online; eg. https://blogs.msdn.microsoft.com/friis/2016/07/25/disabling-tls-1-0-on-your-windows-2008-r2-server-just-because-you-still-have-one/

但是更简单的选择可能是仅使用已禁用较旧TLS版本的浏览器:IIS Express正在响应来自浏览器的请求，并且客户端和服务器相互同意TLS版本(和加密套件)作为TLS握手的一部分.

But an easier option may be to just use a browser in which you've disabled older TLS versions: IIS Express is responding to the requests from the browser and the TLS version (and cryptographic suite) is agreed mutually by client and server as part of the TLS handshake.

详细信息取决于浏览器.在Firefox中，它是 about:config 中的 security.tls.version.min 和 security.tls.version.max 设置.

Details depend on the browser. In Firefox it is the security.tls.version.min and security.tls.version.max settings in about:config.

这篇关于强制使用TLS1.2进行Visual Studio调试的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！