Cloud Vaults unavailable with unpatched Windows 7 or Windows 2012 Servers
Posted by Sakari Heinonen (M-Files) on 29 April 2019 05:24 PM
Some Windows 7 workstations and Windows 2012 servers have not been able to connect to cloud vaults or create new cloud vault connections since April 28th M-Files Cloud maintenance break. Typical errors given by M-Files Desktop include:
To solve the issue, support for TLS 1.2 protocol must be enabled on these older operating systems. You can find instructions on how to achieve this below.
Support for outdated and vulnerable Transport Layer Security protocols TLS 1.0 and TLS 1.1 was disabled during April 28th Cloud mainenance break. Older, unpatched operating systems use these protocols by default. Disabling these unsecure protocols has been strongly recommended by PCI Council, Microsoft, Google and Apple, for example. Below is one of the announcements that were sent to all M-Files Cloud customers:
You can enable the support for TLS 1.2 protocol by manually modifying Windows registry or by using an EasyFix provided by Microsoft.
3.1 Enable TLS 1.2 support manually via registry keys
To add the keys manually, follow these official instructions provided by M-Files. You might need to install the Microsoft update mentioned in the article first.
3.2 Enable TLS 1.2 support via Microsoft EasyFix
Alternatively, you can use the EasyFix tool provided by Microsoft to add the registry keys automatically. In order to use the tool you will need to have Service Pack 1 for Windows 7 and the appropriate Windows update installed.
Instructions and download for the EasyFix are available here: Update to enable TLS 1.1 and TLS 1.2 as default secure protocols in WinHTTP in Windows