Hello Pals of Proxy,
The content of this post applies to customers with an internet-facing PROXY Pro RAS server instance.
A couple years ago we published a blog post recommending that customers run a tool called IIS Crypto, from Nartac Software, on their PROXY Pro RAS server in order to achieve the most ideal secure configuration state possible. We have recently revised our best practices document to reflect current best practices. Following the steps in the RAS Server Hardening PDF will result in an A+ grade of your PROXY Pro Web Console website from Qualys’s SSL Server Test, a free online service that will perform a deep analysis of the current configuration state of any web server available on the internet. The revisions in the updated PDF make mention of using IIS Crypto to disable TLS 1.0 and 1.1, leaving only TLS 1.2 enabled on the server which is the key to receiving the A+ website grade.
If you are the administrator of PROXY Pro at your company and your server is internet-facing please follow the steps in the guide to achieve the most secure configuration state possible.
Questions? Write us at firstname.lastname@example.org at any time.
Proxy Networks Support Team