Search The ForumSearch   RegisterRegister  LoginLogin

AfterLogic Aurora
 AfterLogic Forum : AfterLogic Aurora
Subject Topic: Outlook sync plugin TLS Post ReplyPost New Topic
Author
Message << Prev Topic | Next Topic >>
solkmaaker
Senior Member
Senior Member


Joined: 28 June 2020
Online Status: Offline
Posts: 163
Posted: 16 September 2020 at 4:44am | IP Logged Quote solkmaaker
Apparently Outlook sync plugin does not support TLSv1.1 and up.
I tested with windows 10 (fully updated) and Outlook 2010.
Server was nginx, with RSA 4096 bit keys and diffie-hellman key was also 4096 bit, enabled protocols were TLSv1.1 TLSv1.2 TLSv1.3

Error message was: ERROR|Error occurred. The request was aborted: Could not create SSL/TLS secure channel.

If i enable TLSv1 on server side, sync work OK.

Although .NET version was 4.8, sync plugin SSL handshake behavior looks like .NET 4.5(.2), which supports TLSv1 at most according to
Transport Layer Security (TLS) best practices with the .NET Framework

Can sync plugin be upgraded to use .NET version 4.6 which supports TLS 1.1 and 1.2?
Back to Top View solkmaaker's Profile Search for other posts by solkmaaker
 
Alex
AfterLogic Support
AfterLogic Support
Avatar

Joined: 19 November 2003
Online Status: Offline
Posts: 2206
Posted: 16 September 2020 at 5:01am | IP Logged Quote Alex
Hi,

What is the URL of the installation with TLS 1.0 turned off? So that we'd be able to check.

Thanks!

Regards,
Alex

Back to Top View Alex's Profile Search for other posts by Alex
 
solkmaaker
Senior Member
Senior Member


Joined: 28 June 2020
Online Status: Offline
Posts: 163
Posted: 16 September 2020 at 5:16am | IP Logged Quote solkmaaker
Hi

Try: https://XXX.XXX.XX

This is just testing server at the moment, let me know if you need any changes.

Edit: removed URL, since it is public forum
Back to Top View solkmaaker's Profile Search for other posts by solkmaaker
 
solkmaaker
Senior Member
Senior Member


Joined: 28 June 2020
Online Status: Offline
Posts: 163
Posted: 16 September 2020 at 7:28am | IP Logged Quote solkmaaker
I see some requests coming in from your side with TLS 1.2:
Code:
Sep 16 13:55:22 localhost mail nginx: XX.XXX.102.70 - test1@XXXX.XXX [16/Sep/2020:13:55:22 +0000] TLSv1.2/ECDHE-RSA-AES256-GCM-SHA384 "OPTIONS / HTTP/1.1" 401 1019 "-" "-"
Sep 16 13:55:32 localhost mail nginx: XX.XXX.102.70 - - [16/Sep/2020:13:55:32 +0000] TLSv1.2/ECDHE-RSA-AES256-GCM-SHA384 "POST /?/Api/ HTTP/1.1" 401 1115 "-" "-"
Sep 16 13:55:35 localhost mail nginx: XX.XXX.102.70 - test1@XXXX.XXX [16/Sep/2020:13:55:35 +0000] TLSv1.2/ECDHE-RSA-AES256-GCM-SHA384 "OPTIONS / HTTP/1.1" 401 1019 "-" "-"


When my win10 did requests, there was nothing in logs, until i enabled TLSv1
Back to Top View solkmaaker's Profile Search for other posts by solkmaaker
 
Alex
AfterLogic Support
AfterLogic Support
Avatar

Joined: 19 November 2003
Online Status: Offline
Posts: 2206
Posted: 16 September 2020 at 7:39am | IP Logged Quote Alex
Hi,

Thanks. OutlookSync tool has been updated to support TLS 1.2 as well.

Regards,
Alex
Back to Top View Alex's Profile Search for other posts by Alex
 
solkmaaker
Senior Member
Senior Member


Joined: 28 June 2020
Online Status: Offline
Posts: 163
Posted: 16 September 2020 at 8:18am | IP Logged Quote solkmaaker
Hi

Tested, works with TLS1.2 now.

Thank you.
Back to Top View solkmaaker's Profile Search for other posts by solkmaaker
 

If you wish to post a reply to this topic you must first login
If you are not already registered you must first register

  Post ReplyPost New Topic
Printable version Printable version

Forum Jump

Powered by Web Wiz Forums version 7.9
Copyright ©2001-2004 Web Wiz Guide