< Back
Disable-TlsSessionTicketKey
Post
NAME Disable-TlsSessionTicketKey
SYNOPSIS
Disables a TLS session ticket key.
SYNTAX
Disable-TlsSessionTicketKey [-ServiceAccountName] <NTAccount> [-Confirm] [-WhatIf] [<CommonParameters>]
DESCRIPTION
The Disable-TlsSessionTicketKey cmdlet disables an administrator managed Transport Layer Security (TLS) session ticket key for the service account. The
cmdlet disables the key for the TLS session by deleting the key and the corresponding rule that uses the key.
When you disable a TLS session ticket key for the service account, the service account cannot decrypt existing TLS session tickets. Disabling the TLS
session ticket key can affect the performance of the TLS server. The TLS server cannot create new session tickets and must negotiate session information
between the client and the server every time the client connects to the TLS server.
TLS creates a session ticket by using the TLS Session Resumption without Server-Side State mechanism. For more information, see New-TlsSessionTicketKey
or type Get-Help New-TlsSessionTicketKey.
PARAMETERS
-ServiceAccountName <NTAccount>
Specifies the name of a service account. The cmdlet disables the TLS session ticket key for the service account. Only System, LocalService,
NetworkService, and SID of virtual accounts are supported.
Required? true
Position? 1
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Confirm [<SwitchParameter>]
Prompts you for confirmation before running the cmdlet.Prompts you for confirmation before running the cmdlet.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? false
-WhatIf [<SwitchParameter>]
Shows what would happen if the cmdlet runs. The cmdlet is not run.Shows what would happen if the cmdlet runs. The cmdlet is not run.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
Example 1: Disable a TLS session ticket key.
PS C:\\> Disable-TlsSessionTicketKey -ServiceAccountName "NetworkService"
This command disables the TLS session ticket key for the service account named NetworkService.
RELATED LINKS
Online Version: http://go.microsoft.com/fwlink/?LinkId=294408
Enable-TlsSessionTicketKey
New-TlsSessionTicketKey
Export-TlsSessionTicketKey
SYNOPSIS
Disables a TLS session ticket key.
SYNTAX
Disable-TlsSessionTicketKey [-ServiceAccountName] <NTAccount> [-Confirm] [-WhatIf] [<CommonParameters>]
DESCRIPTION
The Disable-TlsSessionTicketKey cmdlet disables an administrator managed Transport Layer Security (TLS) session ticket key for the service account. The
cmdlet disables the key for the TLS session by deleting the key and the corresponding rule that uses the key.
When you disable a TLS session ticket key for the service account, the service account cannot decrypt existing TLS session tickets. Disabling the TLS
session ticket key can affect the performance of the TLS server. The TLS server cannot create new session tickets and must negotiate session information
between the client and the server every time the client connects to the TLS server.
TLS creates a session ticket by using the TLS Session Resumption without Server-Side State mechanism. For more information, see New-TlsSessionTicketKey
or type Get-Help New-TlsSessionTicketKey.
PARAMETERS
-ServiceAccountName <NTAccount>
Specifies the name of a service account. The cmdlet disables the TLS session ticket key for the service account. Only System, LocalService,
NetworkService, and SID of virtual accounts are supported.
Required? true
Position? 1
Default value none
Accept pipeline input? false
Accept wildcard characters? false
-Confirm [<SwitchParameter>]
Prompts you for confirmation before running the cmdlet.Prompts you for confirmation before running the cmdlet.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? false
-WhatIf [<SwitchParameter>]
Shows what would happen if the cmdlet runs. The cmdlet is not run.Shows what would happen if the cmdlet runs. The cmdlet is not run.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? false
<CommonParameters>
This cmdlet supports the common parameters: Verbose, Debug,
ErrorAction, ErrorVariable, WarningAction, WarningVariable,
OutBuffer, PipelineVariable, and OutVariable. For more information, see
about_CommonParameters (https:/go.microsoft.com/fwlink/?LinkID=113216).
INPUTS
OUTPUTS
Example 1: Disable a TLS session ticket key.
PS C:\\> Disable-TlsSessionTicketKey -ServiceAccountName "NetworkService"
This command disables the TLS session ticket key for the service account named NetworkService.
RELATED LINKS
Online Version: http://go.microsoft.com/fwlink/?LinkId=294408
Enable-TlsSessionTicketKey
New-TlsSessionTicketKey
Export-TlsSessionTicketKey