How do I configure the Datto RMM Agent to use the TLS 1.1 or TLS 1.2 protocol?
- Datto RMM
By default, the Datto RMM Agent uses the TLS 1.0 protocol to establish the connection to the Datto RMM Web Platform. TLS 1.0 is outdated and can be considered a security risk. The Datto RMM best practice is to configure the RMM Agent to use TLS 1.1 or 1.2.
Before following this procedure, make sure .NET 4.5 is installed on the device.
The entries required in the registry are not present by default; you must manually add them. Contact Datto RMM Support for assistance with adding these entries.
2. In the endpoint's registry, enable Strong Encryption (SchUseStrongCrypto) as a client.
Figure 2: SchUseStrongCrypto enabled in the Registry (click to enlarge)
3. Reboot the device for the changes to take effect.
- Why .NET Framework 4.0.3 cannot use TLS 1.1 or TLS 1.2 (external link)