Policy

Allow fallback to SSL 3.0 (Internet Explorer)

This policy setting allows you to block an insecure fallback to SSL 3.0. When this policy is enabled, Internet Explorer will attempt to connect to sites using SSL 3.0 or below when TLS 1.0 or greater fails. We recommend that you do not allow insecure fallback in order to prevent a man-in-the-middle attack. This policy does not affect which security protocols are enabled. If you disable this policy, system defaults will be used.

Policy
Pack Microsoft Windows
Category Windows Components / Internet Explorer / Security Features
Policy ID 073a16a3db22
Internal name Advanced_EnableSSL3Fallback

Registry

Copy registry mappings

HKLM\Software\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\EnableSSL3Fallback

Policy notes

This policy setting allows you to block an insecure fallback to SSL 3.0. When this policy is enabled, Internet Explorer will attempt to connect to sites using SSL 3.0 or below when TLS 1.0 or greater fails. We recommend that you do not allow insecure fallback in order to prevent a man-in-the-middle attack. This policy does not affect which security protocols are enabled. If you disable this policy, system defaults will be used.

Related policies

Do not display the reveal password buttonTurn off Data Execution PreventionTurn off Data URI support