Details
The allowed encryption protocols determines the possible encryption types that can be used. Preventing the use of older protocols decreases vulnerability.
Solution
To implement the recommended configuration state, set the following Group Policy setting to Enabled.
Computer ConfigurationAdministrative TemplatesWindows ComponentsInternet ExplorerInternet Control PanelAdvanced PageTurn off Encryption SupportTurn off Encryption Support.
Then set the Secure Protocol combinations option to Only use TLS 1.0.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.