ALERT: Datto Drive Cloud service is no longer available. For more information, see our end-of-life article. If you'd like to migrate your data to Datto Workplace, see our migration guide.

Datto RMM: How Do I Configure the Datto RMM Agent to Use the TLS 1.1 or TLS 1.2 Protocol?



How do I configure the Datto RMM Agent to use the TLS 1.1 or TLS 1.2 protocol?


  • Datto RMM


By default, the Datto RMM Agent uses the TLS 1.0 protocol to establish the connection to the Datto RMM Web Platform. TLS 1.0 is outdated and can be considered a security risk. The Datto RMM best practice is to configure the RMM Agent to use TLS 1.1 or 1.2.


Before following this procedure, make sure .NET 4.5 is installed on the device.

.NET Framework 4.5 is required because .NET 4.0.3 does not include TLS 1.1 and 1.2.


The entries required in the registry are not present by default; you must manually add them. Contact Datto RMM Support for assistance with adding these entries. 

1. In the endpoint's registry, enable TLS Protocols as a Client.Figure 1: TLS protocols enabled in the Registry (click to enlarge)

2. In the endpoint's registry, enable Strong Encryption (SchUseStrongCrypto) as a client.

Figure 2: SchUseStrongCrypto enabled in the Registry (click to enlarge)

3. Reboot the device for the changes to take effect.

Additional References

Was this article helpful?

0 out of 0 found this helpful

You must sign in before voting on this article.

Want to talk about it? Have a feature request?

Head on over to our Community Forum or get live help.