解决微信小程序ios请求ssl错误问题 windows server 2008 R2默认ssl2.0 改成1.2的

https://support.quovadisglobal.com/kb/a433/how-to-enable-tls-1_2-on-windows-server-2008-r2.aspx

大致意思，更改注册表，添加默认项，默认值，重启服务器就好

英语好的自己看，不好的有道翻译

Problem

How to enable TLS 1.2 on Windows Server 2008 R2?

Resolution

QuoVadis recommends enabling and using the TLS 1.2 protocol on your server.  TLS 1.2 has improvements over previous versions of the TLS and SSL protocol which will improve your level of security.  By default, Windows Server 2008 R2 does not have this feature enabled.  This KB article will describe the process to enable this.

1. Start the registry editor by clicking on Start and Run. Type in "regedit" into theRun field (without quotations).
   
2. Highlight Computer at the top of the registry tree.  Backup the registry first by clicking onFile and then on Export.  Select a file location to save the registry file.
   Note: You will be editing the registry.  This could have detrimental effects on your computer if done incorrectly, so it is strongly advised to make a backup.
   
   
3. Browse to the following registry key:
   HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols
   
4. Right click on the Protocols folder and select New and thenKey from the drop-down menu. This will create new folder.  Rename this folder toTLS 1.2.
   
5. Right click on the TLS 1.2 key and add two new keys underneath it.
   
6. Rename the two new keys as:
   
   • Client
   • Server
   
   
7. Right click on the Client key and select New and thenDWORD (32-bit) Value from the drop-down list.
   
8. Rename the DWORD to DisabledByDefault.
   
9. Right-click the name DisabledByDefault and select Modify... from the drop-down menu.
   
10. Ensure that the Value data field is set to 0 and theBase is Hexadecimal.  Click on OK.
    
11. Create another DWORD for the Client key as you did inStep 7.
    
12. Rename this second DWORD to Enabled.
    
13. Right-click the name Enabled and select Modify... from the drop-down menu.
    
14. Ensure that the Value data field is set to 1 and theBase is Hexadecimal. Click on OK.
    
15. Repeat steps 7 to 14 for the Server key (by creating two DWORDs,DisabledByDefault and Enabled, and their values underneath theServer key).
    
16. Reboot the server.

Your server should now support TLS 1.2.

Note: This article cannot be used on a Windows Server 2003 (IIS 6).  Windows Server 2003 does not support the TLS 1.2 protocol.

Reverting Back

If you make a mistake or something just isn't right, you can revert back to your previous registry settings by opening the Registry Editor and importing the backup you made in step x.

Problem

How to enable TLS 1.2 on Windows Server 2008 R2?

Resolution

QuoVadis recommends enabling and using the TLS 1.2 protocol on your server.  TLS 1.2 has improvements over previous versions of the TLS and SSL protocol which will improve your level of security.  By default, Windows Server 2008 R2 does not have this feature enabled.  This KB article will describe the process to enable this.

1. Start the registry editor by clicking on Start and Run. Type in "regedit" into theRun field (without quotations).
   
2. Highlight Computer at the top of the registry tree.  Backup the registry first by clicking onFile and then on Export.  Select a file location to save the registry file.
   Note: You will be editing the registry.  This could have detrimental effects on your computer if done incorrectly, so it is strongly advised to make a backup.
   
   
3. Browse to the following registry key:
   HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols
   
4. Right click on the Protocols folder and select New and thenKey from the drop-down menu. This will create new folder.  Rename this folder toTLS 1.2.
   
5. Right click on the TLS 1.2 key and add two new keys underneath it.
   
6. Rename the two new keys as:
   
   • Client
   • Server
   
   
7. Right click on the Client key and select New and thenDWORD (32-bit) Value from the drop-down list.
   
8. Rename the DWORD to DisabledByDefault.
   
9. Right-click the name DisabledByDefault and select Modify... from the drop-down menu.
   
10. Ensure that the Value data field is set to 0 and theBase is Hexadecimal.  Click on OK.
    
11. Create another DWORD for the Client key as you did inStep 7.
    
12. Rename this second DWORD to Enabled.
    
13. Right-click the name Enabled and select Modify... from the drop-down menu.
    
14. Ensure that the Value data field is set to 1 and theBase is Hexadecimal. Click on OK.
    
15. Repeat steps 7 to 14 for the Server key (by creating two DWORDs,DisabledByDefault and Enabled, and their values underneath theServer key).
    
16. Reboot the server.

Your server should now support TLS 1.2.

Note: This article cannot be used on a Windows Server 2003 (IIS 6).  Windows Server 2003 does not support the TLS 1.2 protocol.

Reverting Back

If you make a mistake or something just isn't right, you can revert back to your previous registry settings by opening the Registry Editor and importing the backup you made in step x.