Back to Community Threads
4
Disabling TLS 1.0 and 1.1
Question asked by ScottF - 7/17/2020 at 1:32 PM
Unanswered
We would like to disable TLS 1.0 and 1.1 on our SmarterMail servers but we're concerned that this will "break" some of our customers that are running old software. We would like to identify these customers before we disable TLS 1.0 and 1.1.

Has anyone had a similar situation? Is there an easy way to find identify customers that will break before hand?

3 Replies

Reply to Thread
2
echoDreamz Replied
7/17/2020 at 3:40 PM
We've had tons of issues with disabling older TLS versions. Including breaking clients as well as incoming mail server connections that dont support higher TLS versions, which then turns into support tickets of users complaining they are not receiving x email.
1
Sébastien Riccio Replied
7/17/2020 at 11:30 PM
We also considered disabling tls <1.2 but after some analysis there is still too much clients and even servers that aren't tls 1.2 enabled... It's a bit too early to disable the support for it.
Sébastien Riccio System & Network Admin https://swisscenter.com
1
ScottF Replied
7/20/2020 at 5:28 AM
Appreciate the feedback!
Back to Community Threads

Reply to Thread

Related Knowledge Base Articles

SmarterMail Servers and TLS SupportSmarterMail > Installation and Configuration
Deploying Rspamd For Use With SmarterMailSmarterMail > Server Configuration and Management
Set up Autodiscover for SmarterMailSmarterMail > Installation and Configuration
TLS 1.0/1.1 Deprecation InformationGeneral Topics
Configure an Alternative Linux Web Server for SmarterMailSmarterMail > Server Configuration and Management