TLS v1.2 in Win 7

slippyjim

Distinguished
Feb 28, 2012
113
0
18,680
0
Hi,

My webhost has just upgraded their servers to TLS v1.2 and I can no longer connect securely using pop3 in Outlook 2010 on my Win 7 x64 PC.

I have tried what it says here - https://blogs.technet.microsoft.com/schrimsher/2016/07/08/enabling-tls-1-1-and-1-2-in-outlook-on-windows-7/#comment-585 but when I try to install KB3140245 it says it is not applicable to my system, I tried the 32 & 64bit version just to be sure. I have checked Windows update history and it is not already installed.

Any ideas or suggestions?
Thanks
 

androbourne

Estimable
Jul 18, 2017
2,350
3
3,665
408
Who is your email service provider? Is this something in house or business?

It could be possible the server side is not secured properly which is why you are receiving this error.

Try running the email domain through this tool. It will give you a rating and tell you vulnerabilities it has found. If I had to guess, it may not be very secure. If the older TLS methods are still enabled but they turned on v1.2 and are trying to force all traffic through it. It can causes these issues.

https://www.ssllabs.com/ssltest/

It could also be related to your Outlook version. If they also upgraded to Exchange 2016 on the backend. Then your Outlook version may not be fully compatible. Have you tried to update/patch your Outlook version to the latest?
 

slippyjim

Distinguished
Feb 28, 2012
113
0
18,680
0
My webhost is 101sitehosting.com I have a small business its only me with a couple of email addresses

That test say it has TLS v1.2 only enabled, everything else is No

From what I have read its more a Windows issue rather than Outlook. This page - https://blogs.msdn.microsoft.com/kaushal/2011/10/02/support-for-ssltls-protocols-on-windows/ says Win 7 supports v1.2 but needs to be enabled so that ties in with what I have read previously
 

androbourne

Estimable
Jul 18, 2017
2,350
3
3,665
408


Right but if you have it on in IE then its on... so its most likely not a Windows issues but instead an Outlook issue.

So if your provider upgraded to Exchange 2016 as I suspect. Then your Outlook client is only compatible with it on SP3 or higher... So make sure your Outlook is upgraded as I recommended earlier.

"Exchange 2010
Supported with Update Rollup 11 for Exchange 2010 SP3 or later on all Exchange 2010 servers in the organization, including Edge Transport servers. "

https://docs.microsoft.com/en-us/exchange/plan-and-deploy/system-requirements

P.S.
Also your email provider would be smart to disable older TLS version... below is what is enabled on the server. Only reason they should be on is to support legacy equipment. However, its still vulnerable to attack.

TLS 1.3 No
TLS 1.2 Yes
TLS 1.1 Yes
TLS 1.0 Yes
SSL 3 No
SSL 2 No

 

slippyjim

Distinguished
Feb 28, 2012
113
0
18,680
0
I have all the latest office updates, SP2 and all other updates since as well installed

The webhost address isnt my mail server just their website, my mail server gives
TLS 1.3 No
TLS 1.2 Yes
TLS 1.1 No
TLS 1.0 No
SSL 3 No
SSL 2 No
 

slippyjim

Distinguished
Feb 28, 2012
113
0
18,680
0


Doesnt help, already tried that as I said in my original post
 

androbourne

Estimable
Jul 18, 2017
2,350
3
3,665
408
Just download Thunderbird which is a free alternative of Outlook by Mozilla. Set it up using your account info and see if you still get the warning.

It is most likely the age of your email client as I stated earlier.
 

ASK THE COMMUNITY

TRENDING THREADS