SharePoint Online connection issue when TLS 1.2 is required.

Azure AD and Office 365
9.0-9.7
9.8
https://kb.netwrix.com/3648
Copy Article URL Copied

When connections between the internal environment and O365 are restricted to TLS 1.2 and possible limited Ciphers.

Add the following as noted in Transport Layer Security (TLS) best practices with the .NET Framework

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
“Enabled”=dword:00000001
“DisabledByDefault”=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
“Enabled”=dword:00000001
“DisabledByDefault”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v2.0.50727]
“SystemDefaultTlsVersions”=dword:00000001
“SchUseStrongCrypto”=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319]
“SystemDefaultTlsVersions”=dword:00000001
“SchUseStrongCrypto”=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727]
“SystemDefaultTlsVersions”=dword:00000001
“SchUseStrongCrypto”=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]
“SystemDefaultTlsVersions”=dword:00000001
“SchUseStrongCrypto”=dword:00000001

For ease of use create a .reg file with this text to merge into the registry.

If needed to assist with the restricted algorithms the easiest way to do that is using IIS Crypto software, then merger the registry keys.


Related Netwrix System Health log entry:
Source: SharePoint Online Audit Service
Event ID: 3204
Description of the issue: Unable to establish connection to the remote WebService due to the following error: The underlying connection was closed: An unexpected error occurred on a receive.

Related details from SpaOnline.log default path:
C:\ProgramData\Netwrix Auditor\Logs\SharePoint Online Auditing\**Monitoring-Plan-GUID**
The client and server cannot communicate, because they do not possess a common algorithm

 

 

Go Up