Create Registry entries to Enable TLS 1.2

In order to better protect the security of data, Autotask is requiring that all software connecting to the Autotask API utilize TLS 1.1 or 1.2 protocol when communicating via SSL to Autotask.

This guide shows the process to create or modify two registry keys in order to get TLS 1.2 Encryption Protocol enabled (this needs to be accomplished in every machine running either the Identity Syncronizer Management Studio or the IDSync MMC components for Active Directory Users and Computers).

To enable TLS 1.2, set the SchUseStrongCrypto DWORD value in the following two registry keys to 1.  Create the DWORD entries if they don't exist:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319

Step-by-step guide

• Open a command prompt using the “Run as administrator” option

• Copy and paste the following command , then hit “enter” to run it.

REG ADD HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319 /v SchUseStrongCrypto /t REG_DWORD /d 1

• Copy and paste the following command , then hit “enter” to run it.

REG ADD HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319 /v SchUseStrongCrypto /t REG_DWORD /d 1

• You should get a couple of messages confirming the “The operation completed successfully”

Related articles

• Page:
  Upgrade the IDSync Active Directory Connector
• Page:
  Upgrade Ingram Subscription from IDSync 3.10 to IDSync 4.1
• Page:
  Show the Resource tab within the Autotask tab in ADUC
• Page:
  Create Registry entries to Enable TLS 1.2