Our .NET integration toolkit does not automatically switch to TLS1.2 if it cannot communicate with TLS1.0 or TLS1.1. It needs to be forced to use TLS1.2 from the moment we stop supporting TLS1.0/1.1.
This can be done in 2 ways:
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319] "SchUseStrongCrypto"=dword:00000001
[HKEY_LOCAL_MACHINE\\SOFTWARE\\Wow6432Node\\Microsoft\\.NETFramework\\v4.0.30319]"SchUseStrongCrypto"=dword:00000001
In the App.config, for applications based on .NET Framework 4.0 or higher, the following parameter needs to be added:
<runtime>
<AppContextSwitchOverrides value="Switch.System.Net.DontEnableSystemDefaultTlsVersions=false"/>
</runtime>
Add the following code snippet to the application initialisation:
System.Net.ServicePointManager.SecurityProtocol=(System.Net.SecurityProtocolType)3072;
There is also a nice blog by Kevin Chalet about Forcing an old .NET application to support TLS 1.2 without recompiling it.
Do you need help? Contact support or operations.
