A better idea would be to turn FIPS off. This is a policy setting in Windows. It disallows the use of any cryptographic algorithm that is not on the list of approved algorithms, meaning you can't use known-broken algorithms, like MD5 and SHA.
This is a problem since there are tons of things still using MD5 and SHA, like the compilers in Visual Studio, file hashing tools, and certificate tools.
We had it turned on for about a year and half before we were forced to turn it off because of all the problems it caused.
Microsoft even
recommends turning it off[
^] now too.