Registry settings to enable TLS v1.1 and TLS v1.2 support for EWS (2024)

Table of Contents
Enable TLS v1.1 and TLS v1.2 for Message Connector Enable TLS v1.1 and TLS v1.2 for Exchange Server

Welcome > Advanced features > Registry settings to enable TLS v1.1 and TLS v1.2 support for EWS

In Kofax Import Connector, for EWS to send TLS v1.1 and TLS v1.2 confirmingrequests and messages to Microsoft Exchange server, modify/add specific registry keys for both client (Message Connector) and Exchange Server.

Initially, you must install the required .NET Framework 3.5.1 updates to enable TLS v1.1 and TLS v1.2. Use the appropriatelinks from the following table to upgrade .NET Framework for the applicable Operating System in use.

Operating System (Server/Client) Web link
Windows Server 2012 3154519
Windows 8.1 and Windows Server 2012 R2 3154520
Windows 10, version 1511 3156421

Note If the .NET Framework update is already installed or if the update is not required (in case a higher version of .NETFramework is already installed which support TLS v1.1 and TLS v1.2), following error is displayed The update is not applicable to your computer.

To enable TLS, do the following for:

Enable TLS v1.1 and TLS v1.2 for Message Connector

To enable TLS v1.1 on a computer where Message Connector is installed, add or modify the following registry sub keys.

Operating System type Registry path Sub key Type Description
64-bit HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727 SystemDefaultTlsVersions dword Set this sub key value to 1
64-bit HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v2.0.50727 SystemDefaultTlsVersions dword Set this sub key value to 1
32-bit HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727 SystemDefaultTlsVersions dword Set this sub key value to 1
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Client DisabledByDefault dword Set this sub key value to 0.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Client Enabled dword Set this sub key value to 1.

To enable TLS v1.2 on a computer where Message Connector is installed, add or modify the following registry sub keys.

Operating System type Registry path Sub key Type Description
64-bit HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727 SystemDefaultTlsVersions dword Set this sub key value to 1
64-bit HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v2.0.50727 SystemDefaultTlsVersions dword Set this sub key value to 1
32-bit HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727 SystemDefaultTlsVersions dword Set this sub key value to 1
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Client DisabledByDefault dword Set this sub key value to 0.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Client Enabled dword Set this sub key value to 1.

Enable TLS v1.1 and TLS v1.2 for Exchange Server

To enable TLS v1.1 on a computer where Microsoft Exchange Server is running, add or modify the following registry sub keys.

Operating System type Registry path Sub key Type Description
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Client DisabledByDefault dword Set this sub key value to 0.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Client Enabled dword Set this sub key value to 1.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Server DisabledByDefault dword Set this sub key value to 0.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.1\Server Enabled dword Set this sub key value to 1.

To enable TLS v1.2 on a computer where Microsoft Exchange Server is running, add or modify the following registry sub keys.

Operating System type Registry path Sub key Type Description
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Client DisabledByDefault dword Set this sub key value to 0.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Client Enabled dword Set this sub key value to 1.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Server DisabledByDefault dword Set this sub key value to 0.
32-bit/64-bit HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\Schannel\Protocols\TLS 1.2\Server Enabled dword Set this sub key value to 1.

Note

  • Both server and client (Message Connector) sub keys must beenabled at Exchange Server. After enabling the keys, restart the computer.

  • To support this feature on Exchange Server 2013, install all the latest updates available for Exchange Server 2013. Additionally, for Exchange Server 2013, install the CU16 update. Also, it is recommended that latest updates for all exchange servers must be installed.

Registry settings to enable TLS v1.1 and TLS v1.2 support for EWS (2024)
Top Articles
What To Do When Your Well Pump Stops Working | Kobella
B2B vs B2C Ecommerce: What's the Difference? (2024) - Shopify
Spectrum Gdvr-2007
Bin Stores in Wisconsin
Robot or human?
PRISMA Technik 7-10 Baden-Württemberg
Coindraw App
Mustangps.instructure
Bluegabe Girlfriend
Emmalangevin Fanhouse Leak
Meg 2: The Trench Showtimes Near Phoenix Theatres Laurel Park
Heska Ulite
Which aspects are important in sales |#1 Prospection
Employeeres Ual
Student Rating Of Teaching Umn
Jet Ski Rental Conneaut Lake Pa
DIN 41612 - FCI - PDF Catalogs | Technical Documentation
83600 Block Of 11Th Street East Palmdale Ca
454 Cu In Liters
Classroom 6x: A Game Changer In The Educational Landscape
Craigslist Apartments In Philly
Dutch Bros San Angelo Tx
Grab this ice cream maker while it's discounted in Walmart's sale | Digital Trends
Vermont Craigs List
Pizza Hut In Dinuba
De beste uitvaartdiensten die goede rituele diensten aanbieden voor de laatste rituelen
Mission Impossible 7 Showtimes Near Marcus Parkwood Cinema
Schedule 360 Albertsons
Lola Bunny R34 Gif
Ppm Claims Amynta
SuperPay.Me Review 2023 | Legitimate and user-friendly
Used Safari Condo Alto R1723 For Sale
Dtlr Duke St
Silky Jet Water Flosser
Cardaras Funeral Homes
Jesus Calling Feb 13
49S Results Coral
R/Orangetheory
Where Can I Cash A Huntington National Bank Check
Lowell Car Accident Lawyer Kiley Law Group
Nicole Wallace Mother Of Pearl Necklace
Tgh Imaging Powered By Tower Wesley Chapel Photos
Robeson County Mugshots 2022
Emerge Ortho Kronos
State Legislatures Icivics Answer Key
Craigslist Freeport Illinois
5A Division 1 Playoff Bracket
Hsi Delphi Forum
Bluebird Valuation Appraiser Login
Unbiased Thrive Cat Food Review In 2024 - Cats.com
Bellin Employee Portal
Latest Posts
Differences Between Shared, VPS, and Dedicated Web Hosting
What is Buy Now Pay Later Groceries No Credit Check?
Article information

Author: Gov. Deandrea McKenzie

Last Updated:

Views: 6293

Rating: 4.6 / 5 (46 voted)

Reviews: 93% of readers found this page helpful

Author information

Name: Gov. Deandrea McKenzie

Birthday: 2001-01-17

Address: Suite 769 2454 Marsha Coves, Debbieton, MS 95002

Phone: +813077629322

Job: Real-Estate Executive

Hobby: Archery, Metal detecting, Kitesurfing, Genealogy, Kitesurfing, Calligraphy, Roller skating

Introduction: My name is Gov. Deandrea McKenzie, I am a spotless, clean, glamorous, sparkling, adventurous, nice, brainy person who loves writing and wants to share my knowledge and understanding with you.