Windows AdminCenter 1804 TLS configuration
Just installed Windows AdminCenter 1804 and checked the TLS configuration. Unfortunately TLS1.0 and TLS1.1 is offered, as well as weak ciphers such as DES-CBC3-SHA, RC4-MD5 and others.
Not only should security priority on a server management tool, but also it just doesn't make sense to me, to offer TLS1.0 if only Edge and Chrome is supported as a browser.
Hence my suggestion would be to enable only TLS1.2 with a limited set of ciphers, such as ECDHE-RSA-AES128-GCM-SHA256 and ECDHE-RSA-AES256-GCM-SHA384.
Thanks for pointing this out! We’ll be fixing this in the next update.
Erin Ormseth commented
We just installed Windows Admin Center version 1809 and found that it still only supports TLS 1.2. For our environment this is a compliance problem.
Is TLS 1.2 support still in the works?
Is there a workaround or any settings we can change?
Is there any way to configure this right now?
Also want to add that Chrome will no longer set accept the cipher order with WAC on a clean OS install. You HAVE to remove week ciphers to allow Chrome to connect. Edge still works though.