With all the news about Heartbleed, Poodle etc recently it’s becoming important to make sure your IIS servers have the correct cipher suite ordering and to remove any suites that may be unsafe.

Performing this task is not difficult, and just involves a dozen lines of code you can run thorough power-shell, however it’s often difficult to find the correct ordering and simple ‘cut n paste’ code snippets when you need them.

I have come across a tool that performs thenecessary changes for you with just one button click and a reboot

IISCRYPTO is a tool to help you reorder your cypher suites and delete ‘unsafe’ suites on your IIS servers

And remember to test your results with SSL Labs’ simple test page : SSL Labs Server Test