How to force ZENworks agent to use TLS 1.2 for communication

  • Document ID:7020875
  • Creation Date:09-Jun-2017
  • Modified Date:13-Jul-2017
    • Micro Focus Products:
      ZENworks Configuration Management

Environment

Novell ZENworks Configuration Management 2017
Novell ZENworks Configuration Management 2017 Update 1

Situation

By default the communication between the ZENworks agent and ZENServer is happening over TLS 1.0
Some organizations require the use of TLS 1.2 and do not allow the use of the deprecated TLS 1.0

Resolution

Add the following registry keys to force the agent to communicate over TLS 1.2 instead of TLS 1.0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v4.0.30319]
Add the following DWORD value
Name: SchUseStrongCrypto
Value: 00000001
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319]
Add the following DWORD value
Name: SchUseStrongCrypto
Value: 00000001

13. July 2017 - Carsten Siltz - some small changes and released
13. July 2017 - Johan de la Ferte - Initial creation