How Redirect browser(client) based on non-negotiable SSL/TLS protocol RRS feed

  • Question

  • Hi guys,

    we have a security requirement wherein we required to force the browsers accessing our application to have atleast tsl 1.1 , but we don't want to simply block the request, instead we would like to redirect the request to a unsecured static html page with the instructions on how to get them onto tsl.

    can any one help me here?>? actually i found a similar and exactly same thread on stackoverflow but i think that is probably directed towards linux family.   http://serverfault.com/questions/591188/redirect-browser-based-on-non-negotiable-ssl-tls-protocol-or-cipher

    ps: i have posted the same question on IIS forum (http://forums.iis.net/t/1223352.aspx?How+Redirect+browser+client+based+on+non+negotiable+SSL+TLS+protocol+or+cipher+from+IIS) and got a reply saying that it can be done at windows kernel level(possibly by making use of http.sys, ksecdd.sys and schannel).

    can any one help me here guys.



    • Edited by SyedHaroon Thursday, March 19, 2015 10:01 AM
    Thursday, March 19, 2015 5:26 AM