1755

  • Updated on Feb 6, 2026
  • 1 minute(s) read
  • VN
 Prev Next

WinMagic is pleased to offer our customers support for their PCI DSS requirements, which requires early TLS/SSL to be disabled, and newer secure protocol (TL2 1.2) to be enforced.  The information below will provide the necessary steps to ensure your SES environment is configured to meet these requirements.

For Release Notes on SecureDoc 8.2 HF2 (Click Here)
For PCI Guidance on TLS 1.2 Migration (Click Here)

1.       Ensure that Windows Server is setup to support TLS 1.2, with SSL and prior versions of TLS disabled. Refer to Microsoft document based on the OS version that is being used. Example links for this are shared below:

a.       https://docs.microsoft.com/en-us/windows-server/security/tls/tls-ssl-schannel-ssp-overview
b.       https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/hh831381(v%3dws.11)
2.       Ensure that Microsoft SQL Server is setup to support TLS 1.2, with SSL and prior versions of TLS disabled. Refer to Microsoft document based on the DB version that is being used. Example links for this are shared below:

a.       https://support.microsoft.com/en-ca/help/3135244/tls-1-2-support-for-microsoft-sql-server
3.       Update all SES server components to SES v8.2 HF2, i.e. SES Console, SES Web, SDConnex, and AD Sync.

4.       On the Windows Server system that is running SES Web and SDConnex, please perform the following actions:

  1. Using an account that has administrative credentials, log on to the computer.
  2. Click Start, click Run, type gpedit.msc, and then press ENTER.
  3. In the Local Group Policy Editor, under the Computer Configuration node, double-click Windows Settings, and then double-click Security Settings.
  4. Under the Security Settings node, double-click Local Policies, and then click Security Options.
  5. In the details pane, double-click System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing.
  6. In the System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing dialog box, click Enabled, and then click OK to close the dialog box.
  7. Close the Local Group Policy Editor.

Alternatively: If you wish to do this manually through a Registry change, you can also simply change the following registry key:  
Set: HKLM\System\CurrentControlSet\Control\Lsa\FIPSAlgorithmPolicy\Enabled to 1

Additional information about SecureDoc v8.2 HF2 can be found in the SecureDoc 8.2 HF2 Release Notes. I

Related articles