Enable TLS 1.2 on Windows Server#
If you experience errors during communication with, for instance, Microsoft Graph, OneDrive or SharePoint, it may be due to a recent change in security policy at Microsoft, requiring at least TLS 1.2 for communications.
Unfortunately, this is not enabled by default on certain Windows Server versions and has to be enabled. Please log in to your server, or ask someone else, and perform these changes through the registry editor. If you are unsure which one of the two to update, you may safely change both:
For 32-bit applications that are running on a 32-bit OS and 64-bit applications that are running on a 64-bit OS, update the following subkey values:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727
"SystemDefaultTlsVersions": 00000001
"SchUseStrongCrypto": 00000001
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319
"SystemDefaultTlsVersions": 00000001
"SchUseStrongCrypto": 00000001
For 32-bit applications that are running on 64-bit OSs, update the following subkey values:
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v2.0.50727
"SystemDefaultTlsVersions": dword:00000001
"SchUseStrongCrypto": dword:00000001
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319
"SystemDefaultTlsVersions": dword:00000001
"SchUseStrongCrypto": dword:00000001
What this does is enable strong cryptography (TLS 1.2) for applications running on the .NET framework. After setting these, you may have to restart the M-Files server or, perhaps even safer, restart the server altogether.