John & Cyber Security

My Name is Ebuka John Onyejegbu, am a nice guy, a Developer, cyber security expert and chef. I work in the tech team of a financial Institution, My website is a sandbox to explore new technologies and document what i learn.

March 5, 2021

Configuring the Diffie-Hellman ephemeral (DHE) key size in Microsoft Server to 2048 bits

Configuring the Diffie-Hellman ephemeral (DHE) key size in Microsoft Server to 2048 bits

Configuring the Diffie-Hellman ephemeral (DHE) key size in Microsoft Server to 2048 bits

A situation arose that i had to toughen the Diffie-Hellman key size up. 

I was able to achieve that by following the below steps.

Step1: Navigate to this registry entry

HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms\Diffie-Hellman\ClientMinKeyBitLength

Step2: change the ClientMinKeyBitLength to 00000800

Happy Remediation.

Your Reaction to this Post?

Currently there are no comments, so be the first!
Fork me on Github