We've been doing the commonly recommended steps to disable SSL and early TLS in the Windows registry:
set Enabled to False and so on as described here:
But Qualys is still showing the protocols as being active.
Do we need to also create a subkey with DisabledByDefault set to TRUE?
How is Qualys determining that the protocol is still enabled? Is it using the so-called "Hello" command?
Does anyone have an idea on how to independently verify if a given version of SSL or TLS is enabled?
Thanks for help everyone, I really appreciate it!!!!