home *** CD-ROM | disk | FTP | other *** search
/ PC World Komputer 2010 April / PCWorld0410.iso / WindowsServerTrial / server.iso / sources / install.wim / 2 / Windows / PolicyDefinitions / en-US / CipherSuiteOrder.adml < prev    next >
Encoding:
Extensible Markup Language  |  2008-01-19  |  4.0 KB  |  77 lines
  1. <?xml version="1.0" encoding="utf-8"?>
  2. <!--  (c) 2006 Microsoft Corporation  -->
  3. <policyDefinitionResources xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" revision="1.0" schemaVersion="1.0" xmlns="http://schemas.microsoft.com/GroupPolicy/2006/07/PolicyDefinitions">
  4.   <displayName>enter display name here</displayName>
  5.   <description>enter description here</description>
  6.   <resources>
  7.     <stringTable>
  8.       <string id="SSLConfiguration">SSL Configuration Settings</string>
  9.       <string id="SSLCipherSuiteOrder">SSL Cipher Suite Order</string>
  10.       <string id="SSLCipherSuiteOrder_Help">Determines the cipher suites used by the Secure Socket Layer (SSL).
  11.  
  12. If this setting is enabled, SSL cipher suites will be prioritized in the order specified.
  13.  
  14. If this setting is disabled or not configured, the factory default cipher suite order will be used.
  15.  
  16. All available cipher suites:
  17.  
  18. TLS_RSA_WITH_AES_128_CBC_SHA                 
  19. TLS_RSA_WITH_AES_256_CBC_SHA                 
  20. TLS_RSA_WITH_RC4_128_SHA                     
  21. TLS_RSA_WITH_3DES_EDE_CBC_SHA                
  22. TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P256    
  23. TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P384    
  24. TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P521    
  25. TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P256    
  26. TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P384    
  27. TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P521    
  28. TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P256      
  29. TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P384      
  30. TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P521      
  31. TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256      
  32. TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384       
  33. TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P521
  34. TLS_DHE_DSS_WITH_AES_128_CBC_SHA             
  35. TLS_DHE_DSS_WITH_AES_256_CBC_SHA              
  36. TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
  37. TLS_RSA_WITH_RC4_128_MD5                                       
  38. SSL_CK_RC4_128_WITH_MD5                      
  39. SSL_CK_DES_192_EDE3_CBC_WITH_MD5             
  40. TLS_RSA_WITH_NULL_MD5                        
  41. TLS_RSA_WITH_NULL_SHA
  42. TLS_RSA_WITH_DES_CBC_SHA
  43. TLS_DHE_DSS_WITH_DES_CBC_SHA
  44. TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
  45. TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
  46. TLS_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA
  47. TLS_RSA_EXPORT_WITH_RC4_40_MD5
  48. SSL_CK_DES_64_CBC_WITH_MD5
  49. SSL_CK_RC4_128_EXPORT40_WITH_MD5
  50.  
  51. How to modify this setting:
  52.  
  53. 1. Open a blank notepad document.
  54.  
  55. 2. Copy and paste the list of available suites into it.
  56.  
  57. 3. Arrange the suites in the correct order; remove any suites you don't want to use.
  58.  
  59. 4. Place a comma at the end of every suite name except the last. Make sure there are NO embedded spaces.
  60.  
  61. 5. Remove all the line breaks so that the cipher suite names are on a single, long line.
  62.  
  63. 6. Copy the cipher-suite line to the clipboard, then paste it into the edit box. The maximum length is 1023 characaters.
  64.  
  65. </string>
  66.     </stringTable>
  67.     <presentationTable>
  68.       <presentation id="SSLCipherSuiteOrder">
  69.         <textBox refId="Pol_SSLCipherSuiteOrder">
  70.           <label>SSL Cipher Suites</label>
  71.           <defaultValue>TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA,TLS_RSA_WITH_RC4_128_SHA,TLS_RSA_WITH_3DES_EDE_CBC_SHA,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P256,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P384,TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P521,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P256,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P384,TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P521,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P384,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P521,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P521,TLS_DHE_DSS_WITH_AES_128_CBC_SHA,TLS_DHE_DSS_WITH_AES_256_CBC_SHA,TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA,TLS_RSA_WITH_RC4_128_MD5,SSL_CK_RC4_128_WITH_MD5,SSL_CK_DES_192_EDE3_CBC_WITH_MD5,TLS_RSA_WITH_NULL_MD5,TLS_RSA_WITH_NULL_SHA</defaultValue>
  72.         </textBox>
  73.       </presentation>
  74.     </presentationTable>
  75.   </resources>
  76. </policyDefinitionResources>
  77.