Blocking SSL and TLS connections

You can enable or disable the blocking of network connections established over the TLS 1.0, SSL 2.0, and SSL 3.0 protocols.

We recommend that you block these protocols, because they are obsolete and have flaws that affect the security of data transfer.

To block SSL and TLS connections:

1. Open Kaspersky Endpoint Security Cloud Management Console.
2. Select the Security management → Security profiles section.

   The Security profiles section contains a list of security profiles configured in Kaspersky Endpoint Security Cloud.

3. In the list, select the security profile for the devices on which you want to configure the blocking of SSL and TLS connections.
4. Click the link with the profile name to open the security profile properties window.

   The security profile properties window displays settings available for all devices.

5. In the Windows group, select the Advanced → Threat detection and exclusions section.
6. Under Block SSL/TLS connections, select or clear the check boxes for the protocols that you want to block or to stop blocking.

   If you select the Block TLS 1.0 connections check box, the Block SSL 3.0 connections check box is also automatically selected and cannot be cleared.

The blocking of SSL and TLS connections is updated.

Page top