Enabling TLSv1.2

[lilith.wild]

Needing assistance enabling TLSv1.2. 

I am on ASG-RD 2020 version 13.0.6667.1.

I have upgraded SQL Server Express 2014 to SP3 CU5, which should support TLSv1.2.

We also have ODBC Driver 11 for SQL Server version 12.3.6448.4 installed and .NET is not installed. 

I read on another post that ODBC is no longer used, but .NET is.

When I disable TLSv1.0 via the registry, ASG is no longer able to connect to the database, which resides on the same server. 

This is the only application on this server that is still using TLSv1.0 and we are trying to phase it out of our environment.

[DevOma]

ODBC was never used - just install the latest .NET framework - the native SQL driver will use TLS 1.2 automatically - you can't use any version explicitly... did you restart your server?

[lilith.wild]

Downloaded and updated .NET to 4.8.03761. Also had to update to the Windows Server 2019 CU 202011.

Restarted, disabled TLSv1.0 and 1.1. Restarted, ASG-RD would not connect to database. Enabled TLSv1.0 and 1.1

Restarted, ASG-RD could connect to database. Disabled TLSv1.0, ASG would not connect to database. 

Now that I figured out how to see what versions of .NET are installed, it has v2.0.50727, v2.5, v3.0, v3.5, v4.0, and now v4 with Version 4.8.03761

ASG is still not using TLSv1.2.

[lilith.wild]

I also have RC4 and 3DES disabled, but that shouldn't make any difference.

[DevOma]

Please check your registry - perhaps there is a standard protocol defined

https://support.microsoft.com/en-us/help...-framework

As I told you ASGRD do not require any specific version of TLS - normally .NET choose the best protocol that can be handled by server and client

Did you try to connect from a different machine when disabling TLS 1.0 / 1.1?