Frequently Asked Questions
Frequently Asked Questions
Cloud Vaults unavailable with unpatched Windows 7 or Windows 2012 Servers
Posted by Sakari Heinonen (M-Files) on 29 April 2019 05:24 PM

 1 Overview

Some Windows 7 workstations and Windows 2012 servers have not been able to connect to cloud vaults or create new cloud vault connections since April 28th M-Files Cloud maintenance break. Typical errors given by M-Files Desktop include:

  • Network problems are preventing M-Files from communicating with the server. (0x800400ED)
  • The RPC server is unavailable. (0x800706BA)
  • Access is Denied. (0x80070005)
  • Vault stays offline

To solve the issue, support for TLS 1.2 protocol must be enabled on these older operating systems. You can find instructions on how to achieve this below.

2 Background

Support for outdated and vulnerable Transport Layer Security protocols TLS 1.0 and TLS 1.1 was disabled during April 28th Cloud mainenance break. Older, unpatched operating systems use these protocols by default. Disabling these unsecure protocols has been strongly recommended by PCI Council,  Microsoft, Google and Apple, for example. Below is one of the announcements that were sent to all M-Files Cloud customers:

 

Please be advised that the April maintenance break on the cloud servers is conducted exceptionally on April 28th, 2019 instead of the 21st.

Additionally, we would like to remind you of the disablement of the old TLS 1.0 and TLS 1.1 protocols on all M-Files Cloud Servers on April 28th, 2019 per common data security recommendations. Network connections using TLS 1.0 or 1.1 will no longer be accepted by M-Files Cloud servers after the April 28 update.

This change requires no action for M-Files Mobile and Web users, or machines running Windows 8/8.1 or Windows 10. However, if you use M-Files Desktop on Windows 7 or Windows 2012 Server machines, you may need to enable the TLS 1.2 protocol on those machines to avoid disruptions in the service.

Please follow these instructions to enable the TLS 1.2 protocol on Windows 7 workstations. You can enable TLS 1.2 immediately but please make sure that you enable this protocol by April 28 to avoid disruptions in your cloud service.

Please contact our customer support or email support@m-files.com if you have any questions or if you need support implementing this configuration.

 

Best regards,

M-Files Team 

 3     Solution

You can enable the support for TLS 1.2 protocol by manually modifying Windows registry or by using an EasyFix provided by Microsoft.

3.1      Enable TLS 1.2 support manually via registry keys

To add the keys manually, follow these official instructions provided by M-Files. You might need to install the Microsoft update mentioned in the article first.

Enabling TLS 1.2 on Windows 7 and Windows Server 2012 Computers

3.2      Enable TLS 1.2 support via Microsoft EasyFix

Alternatively, you can use the EasyFix tool provided by Microsoft to add the registry keys automatically. In order to use the tool you will need to have Service Pack 1 for Windows 7 and the appropriate Windows update installed.

Instructions and download for the EasyFix are available here: Update to enable TLS 1.1 and TLS 1.2 as default secure protocols in WinHTTP in Windows 

(4 vote(s))
This article was helpful
This article was not helpful

Help Desk Software by Kayako case