I recently ran a security scan on our mail server and it showed that TLS 1.1 and TLS 1.0 were still in use. I added the appropriate register entries to disable both 1.0 and 1.1. After a reboot of the server I noticed that Mailenable was not connecting to the database. In the diagnostics I saw this error: Fail [ERROR: [Microsoft][ODBC SQL Server Driver][DBMSLPCN]SSL Security error ]
It looks like Mailenable was trying to connect to the database server using TLS1.0, when I re-enabled it everything started working again.
Can you please tell me where the setting is to move it from TLS1.0 to TLS 1.2 when it connects to the database? I would like to disable TLS 1.0 so that we can pass the security scanner testing.
Thanks,
Phil
Problems disabling TLS 1.0
-
Admin
- Site Admin
- Posts: 1093
- Joined: Mon Jun 10, 2002 6:31 pm
- Location: Melbourne, Victoria, Australia
Re: Problems disabling TLS 1.0
Hi,
The OCBD driver does the connection to the database. You need to make sure both your SQL Server version supports TLS 1.2 and that you have the ODBC driver that matches. Check the following article to ensure your SLQ Server is able to do this:
https://support.microsoft.com/en-us/topic/kb3135244-tls-1-2-support-for-microsoft-sql-server-e4472ef8-90a9-13c1-e4d8-44aad198cdbe
Then match the ODBC driver to the server version.
The OCBD driver does the connection to the database. You need to make sure both your SQL Server version supports TLS 1.2 and that you have the ODBC driver that matches. Check the following article to ensure your SLQ Server is able to do this:
https://support.microsoft.com/en-us/topic/kb3135244-tls-1-2-support-for-microsoft-sql-server-e4472ef8-90a9-13c1-e4d8-44aad198cdbe
Then match the ODBC driver to the server version.
