PCI Compliance - Disabling Week and Medium Strength Ciphers in IIS

I was working on PCI compliance a while back for a client. SecurityMetrics.com was running a scan on the machine where their website was hosted and coming back with this error:

Synopsis : The remote service supports the use of weak SSL ciphers. Description : The remote host supports the use of SSL ciphers that offer either weak encryption or no encryption at all

and also this one

Synopsis : The remote service supports the use of medium strength SSL ciphers. Description : The remote host supports the use of SSL ciphers that offer medium strength encryption, which we currently regard as those with key lengths at least 56 bits and less than 112 bits.

The solution involves making a change to the Registry. Open the Registry Editior (Start -> Run -> type Regedit). Navigate to the following registry path:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\ Protocols\SSL2.0\Server\

Add a new DWord Value named Enabled which and set it to 0.

Blog Entries

8/30/2010 -Juggling Again

7/9/2010 -Binding Generic List

5/27/2010 -Formatting Numbers in DataBound Text Box

5/21/2010 - Script to Backup All Sql Server databases

5/20/2010 - Case Sensitivity in Sql Server

5/19/2010 - Working With Dates in Sql Server

5/18/2010 - Curly Quotes and Curly Apostrophes

5/17/2010 - PCI Compliance - Disabling Week Ciphers

5/16/2010 - Coffee Percolator as Electirc Tea Kettle

5/15/2010 - Add a Default Value to an Existing Column in Sql Server

5/10/2010 - Telerik Controls Inside Update Panel Formatting Problem Solved

5/9/2010 - Injecting Client
Script on Asynchronous Postback

5/8/2010 - Add a Foreign Key Constraint to an Existing Table in MS Sql Server

5/7/2010 - Refresh
Sql Server Inellisense

5/4/2010 - Mapping Tool