I have a client that is currently failing there PCI scan due to TLS 1.0
I've modified the registry to remove TLS 1.0 and 1.1 and confirmed TLS 1.2 is there.
Client has Windows 7 computer(s)
I've enabled logging so i can see how clients are connecting.
There appears to be a mix of TLS 1.0 and SSL3, however if i connect it reports TLS 1.2
The RDS Collection is set to TLS 1.0 (there is some bug posted a while back that said it doesn't display the right version!)
In desparation i did try RDS SECURITY but the Win7 clients couldn't launch a RemoteApp and evet log on the server ID:5605 saying to change auth to Pkt_Privacy. and because it was the working day i had to revert back to TLS 1.0
The way i see it, even if i can get the Win7 clients to connect at TLS 1.2, the PCI Scan will still fail !!
This must be an issues many are facing with TLS 1.2 and PCI but can't find any answers, only questions.
If i've missed any vital info here then please ask and i'll try to answer ASAP
Thanks in advance :)