Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 7 Current »

Version 7 is our most secure version. The Database connection driver uses a secure TLS 1.2 driver and has since version 6.10.2. Print Server connections can be secured using the ports 5550 - 5553 instead of the 3550 - 3553 ports as in v6. The version 7 print server supports both port ranges and provides compatibility with v6 and v7 printing environments. To use the secure TLS 1.2 ports, just specify the 5550 as the base port in v7 the Administration console.

To manage TLS 1.2 permissions requires intimate knowledge of the registry. See these Microsoft articles for more information: https://docs.microsoft.com/en-us/windows-server/security/tls/tls-registry-settings and https://docs.microsoft.com/en-US/troubleshoot/windows-server/windows-security/restrict-cryptographic-algorithms-protocols-schannel To simplify the management of these settings, we use the program IIS Crypto from Nartec Software at Tricerat and it makes managing these security settings as easy as clicking a button. See their documentation here https://www.nartac.com/Products/IISCrypto for a complete description. We recommend using the Best Practices button. Make sure you understand the TLS/SSL requirements of other software you may use as weak protocols may be disabled by IIS Crypto. When making changes, a reboot is always necessary!

A good practice is to always backup the registry before making changes!

IIS Crypto even has a button to help with that! See the Advanced tab and the Backup Registry button.

  • No labels