Help
  • Get started
  • Ask the Community
  • How-To & Best Practices
  • Contact Support
Login / Register
Brand Logo
Help
  • Get started
  • Ask the Community
  • How-To & Best Practices
  • Contact Support
close
  • Community Home
  • Forums
    • By Topic
    • By Topic
      EcoStruxure Building
      • Field Devices Forum
      • SmartConnector Forum
      EcoStruxure Power & Grid
      • Gateways and Energy Servers
      • Metering & Power Quality
      APC UPS, Critical Power, Cooling and Racks
      • APC UPS Data Center & Enterprise Solutions Forum
      • APC UPS for Home and Office Forum
      EcoStruxure IT
      • EcoStruxure IT forum
      • EcoStruxure IT™ Advisor CFD
      Remote Operations
      • EcoStruxure Geo SCADA Expert Forum
      • Remote Operations Forum
      Industrial Automation
      • Alliance System Integrators Forum
      • AVEVA Plant SCADA Forum
      • CPG Expert Forum DACH
      • EcoStruxure Automation Expert / IEC 61499 Forum
      • Fabrika ve Makina Otomasyonu Çözümleri
      • Harmony Control Customization Forum
      • Industrial Edge Computing Forum
      • Industry Automation and Control Forum
      • Korea Industrial Automation Forum
      • Machine Automation Forum
      • Modicon PAC Forum
      • PLC Club Indonesia
      Schneider Electric Wiser
      • Schneider Electric Wiser Forum
      Power Distribution IEC
      • Eldistribution & Fastighetsautomation
      • Elektrik Tasarım Dağıtım ve Uygulama Çözümleri
      • Paneelbouw & Energie Distributie
      • Power Distribution and Digital
      • Solutions for Motor Management
      • Specifiers Club ZA Forum
      • Електропроектанти България
      Power Distribution NEMA
      • Power Monitoring and Energy Automation NAM
      Power Distribution Software
      • EcoStruxure Power Design Forum
      • LayoutFAST User Group Forum
      Energy & Sustainability Services
      • Green Building Scoring and Certification Forum
      Light and Room Control
      • SpaceLogic C-Bus Forum
      Solutions for your Business
      • Solutions for your Business Forum
      Support
      • Ask the Community
  • Knowledge Center
    • Building Automation Knowledge Base
    • Geo SCADA Knowledge Base
    • Industrial Automation How-to videos
    • Digital E-books
    • Success Stories Corner
  • Events & Webinars
    • All Events
    • Innovation Talks
    • Innovation Summit
    • Let's Exchange Series
    • Partner Success
    • Process Automation Talks
    • Technology Partners
  • Ideas
    • EcoStruxure Building
      • EcoStruxure Building Advisor Ideas
      Remote Operations
      • EcoStruxure Geo SCADA Expert Ideas
      • Remote Operations Devices Ideas
      Industrial Automation
      • Modicon Ideas & new features
  • Blogs
    • By Topic
    • By Topic
      EcoStruxure Power & Grid
      • Backstage Access Resources
      EcoStruxure IT
      • EcoStruxure IT™ Advisor CFD
      Remote Operations
      • Remote Operations Blog
      Industrial Automation
      • Industrie du Futur France
      • Industry 4.0 Blog
      Power Distribution NEMA
      • NEMA Power Foundations Blog
      Energy & Sustainability Services
      • Active Energy Management Blog
      Light and Room Control
      • KNX Blog
      Knowledge Center
      • Digital E-books
      • Geo SCADA Knowledge Base
      • Industrial Automation How-to videos
      • Success Stories Corner
  • companyImpact

DCE email via office 365 using TLS1.2

EcoStruxure IT forum

A support forum for Data Center Operation, Data Center Expert, and EcoStruxure IT product users to share knowledge on installation, configuration, and general product use.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
  • Home
  • Communities
  • EcoStruxure IT
  • EcoStruxure IT forum
  • DCE email via office 365 using TLS1.2
Options
  • Subscribe to RSS Feed
  • Mark Topic as New
  • Mark Topic as Read
  • Float this Topic for Current User
  • Bookmark
  • Subscribe
  • Mute
  • Printer Friendly Page
Invite a Co-worker
Send a co-worker an invite to the Exchange portal.Just enter their email address and we?ll connect them to register. After joining, they will belong to the same company.
You have entered an invalid email address. Please re-enter the email address.
This co-worker has already been invited to the Exchange portal. Please invite another co-worker.
Please enter email address
Send Invite Cancel
Invitation Sent
Your invitation was sent.Thanks for sharing Exchange with your co-worker.
Send New Invite Close
Top Experts
User Count
Jef
Captain Jef Captain
76
APC_Steve
Commander APC_Steve Commander
54
gsterling
Commander gsterling Commander
49
Cory_McDonald
Lt. Commander Cory_McDonald Lt. Commander
15
View All

Invite a Colleague

Found this content useful? Share it with a Colleague!

Invite a Colleague Invite
Solved Go to Solution
Back to EcoStruxure IT forum
Solved
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:31 PM

0 Likes
13
961
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:31 PM

DCE email via office 365 using TLS1.2

This question was originally posted on DCIM Support by Garry Priestland on 2018-10-09


We have been advised by Microsoft that support for sending email via Office 365 using TLS1.0 and TLS1.1 will be deprecated on 31st October.  TLS1.2 must be used after this.

DCE appears to be using TLS1.0 and I can't see anywhere on DCE how to change the email to use TLS1.2.

Is this possible on DCE?

 

See 

https://support.office.com/en-ie/article/technical-reference-details-about-encryption-in-office-365-...

 

(CID:134681306)

Labels
  • Labels:
  • Data Center Expert
Reply
Share
  • All forum topics
  • Previous Topic
  • Next Topic

Accepted Solutions
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

0 Likes
11
961
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This answer was originally posted on DCIM Support by Steven Marchetti on 2018-10-09


Hi Gary,

 

Starting with 7.5, DCE has an option to enable and disable different versions of TLS. 

I am not 100% sure this also enables and disables these versions for e-mail communications but if the customer is testing this, simply have them disable the unwanted protocols. If they're not testing, let me know and I'll ask about it but it may take a little longer that way.

 

Steve

(CID:134681335)

See Answer In Context

Reply
Share
Replies 13
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

0 Likes
11
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This answer was originally posted on DCIM Support by Steven Marchetti on 2018-10-09


Hi Gary,

 

Starting with 7.5, DCE has an option to enable and disable different versions of TLS. 

I am not 100% sure this also enables and disables these versions for e-mail communications but if the customer is testing this, simply have them disable the unwanted protocols. If they're not testing, let me know and I'll ask about it but it may take a little longer that way.

 

Steve

(CID:134681335)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This comment was originally posted on DCIM Support by Garry Priestland on 2018-10-09


Those settings seem to relate only to how the DCE server itself is accessed and not how the email is sent from  the server.

We disabled all but TLS1.2 on the settings you show in the image...

(CID:134681347)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This comment was originally posted on DCIM Support by Steven Marchetti on 2018-10-09


Thanks, That's what I 1/2 expected but just to be clear, you changed those settings and it's still trying to reach out via email with 1.0? Do you have packet captures or logs showing this so I can properly escalate to engineering?

(CID:134681370)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This comment was originally posted on DCIM Support by Garry Priestland on 2018-10-09


Exactly that.  I will ask the IT chap for the information that shows it is TLS1.0 tomorrow.

(CID:134681377)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This comment was originally posted on DCIM Support by Garry Priestland on 2018-10-11


The MS 365 Admin centre shows the following...

I also have a slight more detailed log for 2 more emails but would rather not put them on a public forum.

 

Regards

 

(CID:134682296)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This comment was originally posted on DCIM Support by Steven Marchetti on 2018-10-11


Thanks Garry,

I'd already sent this to engineering but glad to get your screenshot...I attached it to the issue that I raised.

Problem I see is that since we can apparently not change it using the functionality that I mentioned (I assume you changed that setting before sending that e-mail) it will likely require an update of some sort. Assuming they take action, I can't promise this will be done by December. This could cause issues for you and the rest of the customers that use the SSL functionality in e-mail. I've raised that point to engineering as well.

 

Thanks,

Steve.

(CID:134682424)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This comment was originally posted on DCIM Support by Garry Priestland on 2018-10-11


OK thanks for the response.

(CID:134682621)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:32 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:32 PM

This comment was originally posted on DCIM Support by Joshua Ellis on 2018-10-11


Hello Garry,  is the customers server configured to require 1.2 as of now, or does the server still allow for 1.0?  Our understanding is that DCE should negotiate the protocol, so if the server is only allowing 1.2 then DCE should use 1.2, if 1.0 is allowed then DCE would use 1.0.  We're going to try and test this ourselves to confirm but would be interested to know if the customers SMTP server currently allows for TLS 1.0, which may be why DCE is sending using 1.0.

(CID:134682658)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:33 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:33 PM

This comment was originally posted on DCIM Support by Joshua Ellis on 2018-10-24


Hello Garry,  could you confirm if the customers email server is set for TLS 1.2 and DCE is still trying 1.0 but then not trying 1.1 or 1.2?  Our understanding is that DCE should work at 1.0 but if blocked will try 1.1, if blocked will try 1.2.  Please confirm if this is the case. 

(CID:134688990)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:33 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:33 PM

This comment was originally posted on DCIM Support by Garry Priestland on 2018-10-25


Hi - the email service is provided by Microsoft (Office 365) and is currently supporting TLS1.0.  MS advised that at the end of this month TLS1.0/1.1 will not be supported any more.

We don't seem to be able to choose to use TLS1.2 by default so cannot test the theory you propose.  I was trying to make sure that we don't have multiple customers who have email that does not work at the end of the month, but I don't have the resources to test it.

Based on what you are saying it should not be a problem.

I hope not...

 

(CID:134689335)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:33 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:33 PM

This comment was originally posted on DCIM Support by Joshua Ellis on 2018-10-25


Hello Garry,  correct, we believe that this should not be a problem but were hoping you could confirm this. We were trying to confirm this internally but wanted to see if actual external customers could confirm as well, since field data would be very helpful in this case.

 

Thanks.

(CID:134689593)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:33 PM

In response to DCIM_Support
0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:33 PM

This comment was originally posted on DCIM Support by Steven Marchetti on 2018-11-28


Hi Garry,

Are you OK with Josh's comments? Is it working OK for you?

 

Steve

(CID:137105215)

Reply
Share
DCIM_Support
Picard DCIM_Support
Picard

Posted: ‎2020-07-05 12:33 PM

0 Likes
0
962
  • Mark as New
  • Bookmark
  • Subscribe
  • Mute
  • Subscribe to RSS Feed
  • Permalink
  • Print
  • Email to a Friend
  • Report Inappropriate Content
Share

Posted: ‎2020-07-05 12:33 PM

This question is closed for comments. You're welcome to start a new topic if you have further comments on this issue.

Reply
Share
To The Top!

Forums

  • APC UPS Data Center Backup Solutions
  • EcoStruxure IT
  • EcoStruxure Geo SCADA Expert
  • Metering & Power Quality
  • Schneider Electric Wiser

Knowledge Center

Events & webinars

Ideas

Blogs

Get Started

  • Ask the Community
  • Community Guidelines
  • Community User Guide
  • How-To & Best Practice
  • Experts Leaderboard
  • Contact Support
Brand-Logo
Subscribing is a smart move!
You can subscribe to this forum after you log in or create your free account.
Forum-Icon

Create your free account or log in to subscribe to the forum - and gain access to more than 10,000+ support articles along with insights from experts and peers.

Register today for FREE

Register Now

Already have an account?Login

Terms & Conditions Privacy Notice Change your Cookie Settings © 2023 Schneider Electric, Inc