ALERT: Datto Drive Cloud service will no longer be available as of July 1, 2019. For more information, see our end-of-life article. To learn how to download your Datto Drive Cloud data, please visit this article.

Datto RMM: How Do I Configure the Datto RMM Agent to Use the TLS 1.1 or TLS 1.2 Protocol?

Follow

Question

How do I configure the Datto RMM Agent to use the TLS 1.1 or TLS 1.2 protocol?

Environment

  • Datto RMM

Answer

By default, the Datto RMM Agent uses the TLS 1.0 protocol to establish the connection to the Datto RMM Web Platform. TLS 1.0 is outdated and can be considered a security risk. The Datto RMM best practice is to configure the RMM Agent to use TLS 1.1 or 1.2.

Prerequisite

Before following this procedure, make sure .NET 4.5 is installed on the device.

.NET Framework 4.5 is required because .NET 4.0.3 does not include TLS 1.1 and 1.2.

Procedure

The entries required in the registry are not present by default; you must manually add them. Contact Datto RMM Support for assistance with adding these entries. 

1. In the endpoint's registry, enable TLS Protocols as a Client.Figure 1: TLS protocols enabled in the Registry (click to enlarge)

2. In the endpoint's registry, enable Strong Encryption (SchUseStrongCrypto) as a client.

Figure 2: SchUseStrongCrypto enabled in the Registry (click to enlarge)

3. Reboot the device for the changes to take effect.

Additional References


Was this article helpful?

0 out of 0 found this helpful

You must sign in before voting on this article.

Want to talk about it? Have a feature request?

Head on over to our Community Forum or get live help.