Manage TLS Protocol

For MiCollab 8.1 or later, by default, MSL supports the use of TLS v1.1 and v1.2 for communications security. For earlier releases, MSL supports the use of TLS v1.0 by default. To migrate to the latest TLS version, you must upgrade your MiCollab for PC Client and MiCollab for Mobile Client to MiCollab 8.1 or later, and then disable support for the TLS v1.0 protocol using the following procedure. After these steps are complete, your system will be compliant with the Payment Card Industry Data Security Standard (PCI DSS).
Note:

  • With MSL 10.6 release and later, new installations have the TLSv1.0 protocol disabled by default. The protocol can still be enabled, if required, from the Web Server panel.

  • Existing customers have the option to disable the TLSv1.0 protocol from the Web Server panel.

  • It is not disabled by default on upgrade to MSL 10.6 release.

Disable Support for TLS v1

To disable support for the TLS v1 protocol:

  1. Log into the MiCollabMitel Standard Linux Server Manager for a LAN-based MSL server.

  2. Under Security, click Web Server.

  3. Click the TLS tab.

  4. To disable support for TLS version 1.0, clear Allow TLS v1.0.

    Your system is now in compliance with PCI DSS.

Note:

  • If you disable support for TLS version 1.0, users who employ older web browser such as Internet Explorer 9 or 10 will be denied Server Manager access. To resolve this problem, users should switch to using a newer browser or enable TLS version 1.2 in their existing browsers. In Internet Explorer, the TLS settings are located under Options > Advanced > Security.

  • Some services, such as the MiCollab Client Service, are restarted automatically whenever you update the Allow TLS v1.0 setting. This ensures that the services are updated correctly.

Parent topic: Certificates