I have browser many sites and forums and have not found a definitive answer on how correct this issue. All of my win7 machines comeback with the following vulnerabilities on port 3389.
1. SSL/TLS use of weak RC4 cipher
2. SSL/TLS Server Supports TLSv1.0
3. SSL certificate verification failed vulnerability
Items 1 and 2 are giving me a problem. I have read about how to enable and disable TSLv1.0 and enable TSLv1.1 and 1.2. I have found windows updates that are supposed to allow the other TSL version to work with RDP, but they will not install. I get the wonderful message for both, This update does not apply to your system. (KB2574819 & KB2592687) None of these articles worked for me. TSLv1.0 gets disabled and the system loses RDP connectivity. This connectivity is from one WIN7 to another WIN7 computer. Dose anyone have a one sheet on how to accomplish this? Item three is a lower priority.