Hi, everyone! So here's what I'm running into. I've got 3 Server 2008 R2 VMs. One IIS 7.5, one Tomcat 7 and one SQL Server 2008 R2 SP3 (with TLS fix added). The website works great with TLS 1.0 enabled and communicates through Tomcat to the SQL Server. It's setup for simulated CAC authentication by using user certificates. However, when I disable TLS 1.0 and enable TLS 1.1 and 1.2, the site refuses to work. I'm using the "DisabledByDefault" and "Enabled" registry keys to add the TLS 1.1 and 1.2 functionality. The kicker is that I have all 3 applications combined on another VM and that one works fine in TLS 1.2. It's just the separated VMs that won't work. I suspect the issue lies with IIS because it doesn't even bring up the pop-up window for choosing which user certificate to use, which that is handled by IIS, not Tomcat. I've compared all the settings between the working IIS and the non-working IIS and I can't find anything different. I would love to get some ideas of what to look for next. Thanks in advance!
↧