Microsoft security advisory: Update to default cipher suite priority order: May 12, 2015

INTRODUCTION

Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, visit the following Microsoft website:

How to obtain this update

Important Do not install a language pack after you install this update. If you do this, the language-specific changes in the update will not be applied, and you will have to reinstall the update. For more information, see Add language packs to Windows.

Method 1: Windows Update

This update is available from Windows Update.

Method 2: Microsoft Download Center

The following files are available for download from the Microsoft Download Center.

For all supported x86-based versions of Windows 7

Download Download the package now.

For all supported x64-based versions of Windows 7

Download Download the package now.

For all supported x86-based versions of Windows Embedded Standard 7

Download Download the package now.

For all supported x64-based versions of Windows Embedded Standard 7

Download Download the package now.

For all supported x64-based versions of Windows Server 2008 R2

Download Download the package now.

For all supported IA-64-based versions of Windows Server 2008 R2

Download Download the package now.

For all supported x86-based versions of Windows 8

Download Download the package now.

For all supported x64-based versions of Windows 8

Download Download the package now.

For all supported versions of Windows Server 2012

Download Download the package now.

For all supported x86-based versions of Windows 8.1

Download Download the package now.

For all supported x64-based versions of Windows 8.1

Download Download the package now.

For all supported versions of Windows Server 2012 R2

Download Download the package now.

Release Date: May 12, 2015


For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591 How to obtain Microsoft support files from online services
Virus-scan claim
Virus-scan claim

More Information

To configure the SSL Cipher Suite Order Group Policy setting

  1.  At a command prompt, type gpedit.msc, and then press Enter. The Local Group Policy Editor is displayed.
  2. Expand Computer Configuration, expand Administrative Templates, expand Network, and then click SSL Configuration Settings.
  3. Under SSL Configuration Settings, click SSL Cipher Suite Order.
  4. In the SSL Cipher Suite Order pane, scroll to the bottom. 
  5. Follow the instructions that are labeled How to modify this setting.
Notes
  • You have to restart the computer after you change this setting for the changes to take effect.
  • The list of cipher suites is limited to 1,023 characters. 
  • Using Group Policy as described here is the supported method of updating the cipher suite priority ordering. Updating the registry settings for the default priority ordering is not supported. If you change these registry settings, this update will reset them to the default settings.

Update detail information

Prerequisites

To install this update, you must have the April 2014 Update for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 (2919355) installed in Windows 8.1 or Windows Server 2012 R2. Or, install Service Pack 1 for Windows 7 or Windows Server 2008 R2.

Additionally, you must install one of the following servicing stack updates on the computer:

Registry information

To apply this update, you do not have to make any changes to the registry.

Restart requirement

You may have to restart the computer after you apply this update.



Update replacement information

This update does not replace a previously released update.
File information


References

See the terminology that Microsoft uses to describe software updates.
Properties

Article ID: 3042058 - Last Review: May 12, 2015 - Revision: 1

Feedback