TLS Updates for Improved Security

ClickDimensions has recently deprecated certain versions of TLS.

What is changing?

Microsoft, Google, Apple, Mozilla and other major technology vendors are deprecating support of TLS versions 1.0 and 1.1.  Popular web browsers will continue to function but start showing alerts when TLS 1.0 or 1.1 web communication is encountered, and server-to-server communications will also change.

Transport Layer Security (TLS) is a security protocol to encrypt and authenticate secure connections across the web, either from a web browser or between web servers. TLS version 1.0 was first defined in 1999, and version 1.1 was introduced in 2006. Due to evolving regulatory requirements and new security vulnerabilities, technology providers have been deprecating their support of TLS versions 1.0 and 1.1. 

The current timetable for TLS 1.0/1.1 deprecation is:

• July 19, 2021 - AU - Deployed
• July 22, 2021 - CAN Deployed
• July 26, 2021 - US - Deployed
• July 29, 2021 - EU Deployed

How will this impact me?

ClickDimensions and Microsoft have been taking steps to ensure that cloud services will not be impacted. 

You will not be impacted if . . .

Your organization’s websites and web applications are hosted by ClickDimensions, Microsoft, or other major cloud or SaaS providers.

You will be impacted if . . .

1. Your organization uses CRM on premise running on Windows Server version 2012 R2 or older.  These older operating systems used TLS 1.1 by default. In order to avoid TLS alerts or errors, update your CRM server environment. Learn more from Microsoft.
2. Your organization uses CRM 2011 on premise.  Please contact our Support team or your Success Manager for more information.
3. Your organization uses a later version of CRM on premise with a build older than:
   a) CRM 2013 build 6.0.2.46 / Update Rollup 2
   b) CRM 2015 build 7.0.0.3543
   c) CRM 2016 build 8.0.0.1088
   
   In order to avoid TLS alerts or errors, update your CRM environment to the minimum build listed above or update to the most recent version of Dynamics CRM. If you continue using CRM 2013, 2015, or 2016, then you will also need to apply ClickDimensions version 10.9 or later which contains updates for TLS 1.2 that will be required to keep your solution functional. Learn more from Microsoft.
4. Your organization or an IT provider hosts websites, microsites, or web applications on local web servers that are still using TLS 1.0 or 1.1. In order to avoid TLS alerts or errors, update your web server(s). Learn more from Microsoft.
   

More Details

For additional resources and information, you can also check the following:

• Microsoft Support: Regarding TLS 1.2 connectivity
• Microsoft Support: Solving the TLS 1.0 Problem
• Microsoft TLS Blog Post
• Google TLS Blog Post
• Webkit TLS Blog Post
• Mozilla TLS Blog Post
• TLS Best Practices
• Microsoft Support: Update for TLS 1.2 in Windows Server 2008 SP2
• Microsoft Support: Update for TLS 1.2 in WinHTTP

Share this article with your IT team.