May 26, 2021 at 2:05 pm
hello,
what hotfix do i need for the following version to enable tsl1.2?
Or can someone tell me where I could look there?
Thanks in advance.
With kind regards
Joe
May 26, 2021 at 5:22 pm
For SQL Server 2012, TLS 1.2 (transport layer security 1.2) depends on your SP version. For SP2, it is CU10. For SP1, it is CU3. This can be found here:
As for how to enable it, check out this blog post:
https://sqltutorialtips.blogspot.com/2019/12/how-to-enable-tls-12-in-sql-server.html
Basically, you need to change some registry settings on the client and server side. With MOST registry changes, you need a reboot for them to take effect.
The exact wording is:
In System Registry the following changes need to be applied to enable the TLS 1.2
“HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\
SCHANNEL\Protocols\”
TLS 1.0
Client
DisabledByDefault - 1
Enabled - 0
Server
DisabledByDefault - 1
Enabled - 0
TLS 1.1
Client
DisabledByDefault - 1
Enabled - 0
Server
DisabledByDefault - 1
Enabled - 0
TLS 1.2
Client
DisabledByDefault - 0
Enabled - 1
Server
DisabledByDefault - 0
Enabled - 1
The above is all just my opinion on what you should do.
As with all advice you find on a random internet forum - you shouldn't blindly follow it. Always test on a test server to see if there is negative side effects before making changes to live!
I recommend you NEVER run "random code" you found online on any system you care about UNLESS you understand and can verify the code OR you don't care if the code trashes your system.
May 27, 2021 at 6:07 am
Hello,
thank you very much for the answer.
I forgot to include the version:
Microsoft SQL Server 2012 - 11.0.5569.0 (X64)
Jan 9 2015 11:38:17
Copyright (c) Microsoft Corporation
Express Edition (64-bit) on Windows NT 6.3 <X64> (Build 18363: )
I can't find a hotfix for this version on the site.
How can I find out if I have SP2 or SP3?
Is it one of these 4?
Many greetings and thanks.
Joe
May 27, 2021 at 8:25 am
Apparently you are on service pack 2 https://sqlserverbuilds.blogspot.com/
May 27, 2021 at 8:54 am
May 27, 2021 at 2:10 pm
I would recommend downloading this:
https://www.microsoft.com/en-us/download/details.aspx?id=50731
That is the LATEST CU for 2012 SP2 which includes the TLS 1.2 stuff. Feels to me like a much safer bet than downloading an older version.
I strongly encourage you to install this on TEST, make sure nothing breaks, and only after you are certain the update is working as expected with no performance hits or broken processes, then push it out to live.
The above is all just my opinion on what you should do.
As with all advice you find on a random internet forum - you shouldn't blindly follow it. Always test on a test server to see if there is negative side effects before making changes to live!
I recommend you NEVER run "random code" you found online on any system you care about UNLESS you understand and can verify the code OR you don't care if the code trashes your system.
Viewing 6 posts - 1 through 5 (of 5 total)
You must be logged in to reply to this topic. Login to reply