Enable Outlook 2013/2016/2019 to use Transport Layer Security (TLS) 1.1 and 1.2 in windows 7
If u have an older windows 7 pc from where you want to connect your mail server through outlook 2013/2016/2019 and your mail server only supports TLS 1.2 and 1.3 then this guide is for you.
This document explains how to configure your Microsoft Windows® 7 workstation and Microsoft Outlook® 2013 mail clients to use Transport Layer Security (TLS) protocol version 1.2. Transport Layer Security (TLS) 1.0 and 1.1 are slowly being deprecated so due to security reason it’s better not to use in your production environement. Windows 7 supports TLS 1.1 and TLS 1.2. But these protocol versions are not enabled on it by default. On Windows 8 and higher these protocols are enabled by default.
I am testing on outlook version 2013 but same steps is valid for outlook 2016 and above as well.
STEPS:
-
Check your windows version first. If your have Windows 7 Service Pack (SP1) then you can proceed with step 2 otherwise first you have to upgrade your windows 7 to windows SP1 and move to step 2.
windows7-SP1-update -
Download and install the KB3140245 Windows update from the Microsoft Update Catalog.
windows7-KB3140245 -
Install EasyFix: It will populate DefaultSecureProtocols registry subkey.
EasyFix - Reboot
- Reconnect outlook or do new outlook setup.
That’s it.
OR
If your pc is Windows 7 SP1 and want to run above steps 2 & 3 through powershell script then click on gist filename at below windows7_tls12.ps1. Click on Download ZIP. This script download windows patch for you and do modification in your registry.
To run script Win + R search for powershell and Run as Administrator
cd ~/Downlods/unzippedfoldername
Set-ExecutionPolicy Bypass -Scope Process
./windows7_tls12.ps1
now reboot your pc.
Verification
Now Try to connect your outlook. If you inspect your network traffic through wireshark then you can see TLS handshake between your windows 7 pc and your mail server in TLS 1.2.
Comments