Actions regarding TLS 1.0 and TLS 1.1 deprecation by AWS on June 28th, 2023

Situation

This article describes the actions that need to be taken to ensure normal backup operations continuity after AWS deprecates TLS 1.0 and TLS 1.1 protocols on June 28th, 2023.

On June 28th, 2022 AWS announced that they will be updating the TLS configuration for all AWS service API endpoints to a minimum of TLS version 1.2. This update means that you will no longer be able to use TLS protocol versions 1.0 and 1.1 with all AWS APIs in all AWS Regions after June 28, 2023.

For MSP360 backup it means that the backup plans that have AWS S3 storage or MSP360 AWS S3 Storage as a backup destination will stop working on June 28th, 2023 on the endpoints (computers) where TLS 1.2 is not enabled.

Solution

To ensure that your backups do not start failing suddenly after this change on AWS side, please make sure that TLS 1.2 protocol is enabled on all your endpoints (computers) where MSP360 backup agents are installed before June 28th, 2023.

TLS 1.2 is supported for Windows Server 2012 / 2012 R2 / 2016 / 2019 / 2022 and Windows 8 / 10 / 11 by default.

The following older operating systems might be affected:

  • Windows 7
  • Windows Server 2008
  • Windows Server 2008 R2

Please follow the instructions from the articles below in order to enable TLS 1.2 protocol on the endpoints (computers, servers, machines) where it could be currently disabled:

Windows Server 2008

Windows 7, Windows Server 2008 R2

Refer to Microsoft documentation for further details on TLS 1.2 protocol support.

For your further convenience, if you are using our RMM product, you can get information about the operating systems installed on your endpoints (computers) by generating a Computer Inventory Report.

After that, you can install the required Windows updates and apply the necessary Registry edits using our RMM product right from your Managed Backup Service console.

https://git.cloudberrylab.com/egor.m/doc-help-kb.git