Remove Dependency on TLS 1.0 for HTTPS Pull Server
After disabling TLS 1.0 on our Pull Server and nodes, the nodes are unable to re-register with the Pull Server. This is keeping us from making changes to the LCM on nodes.
I have posted on PowerShell.org forum about this:
Nitin Gupta (Engineer, Windows Server) commented
I am able to reproduce your issue and have a workaround that may work for you. If you enable local policy to use FIPS complaint algorithms for encryption then you will be able to get past this issue. Steps to enable this setting:
1.In Control Panel, click Administrative Tools, and then double-click Local Security Policy.
2.In Local Security Settings, expand Local Policies, and then click Security Options.
3.Under Policy in the right pane, double-click System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing, and then click Enabled.
Keep in mind that you may need to either restart or kill wmiprvse.exe process before trying out your DSC scenario again.