Why are Transport Layer Security (TLS) 1.0 and 1.1 decommissioned?
In order to maintain the highest security standards and promote security practices, GoTo no longer support TLS 1.0 and 1.1 communication protocols when establishing session connections. TLS 1.2 is now the lowest supported version.
- When are TLS 1.0 and 1.1 decommissioned?
- Effective as of December 7, 2020, Rescue by GoTo will no longer support TLS 1.0 and 1.1 communication protocols when establishing session connections. TLS 1.2 will be the lowest supported version going forward.
- Were newer versions of TLS supported before this change?
- Yes - Rescue by GoTo will always use the higher versions of TLS as the default connection encryption protocol. Rescue by GoTo would only fall back to a lower version in the event that was the only version available on the remote system.
- What does this mean for me?
If you are supporting users on legacy operating systems such as Windows XP, Windows 7, Server 2008, or older browsers such as IE with TLS 1.0 or 1.1 set as the default protocol, it will no longer be possible to establish a session using Rescue by GoTo. In addition it will no longer be possible to sign into GoToRescue.com from a device using TLS 1.0 or 1.1.
- Are there any actions users can take to ensure they can still receive support?
Users should enable TLS 1.2 or higher where applicable - see this
Microsoft KB for more information.
Users who are unable to update to TLS 1.2 or higher will not be able to receive support using Rescue by GoTo.
- Why is GoTo making this change?
- GoTo continued to support TLS 1.0 and 1.1 in order to allow users of legacy systems to utilize Rescue by GoTo during the COVID pandemic. After an assessment of the impact to our user-base, the number of users still utilizing TLS 1.0 and 1.1 was found to be extremely low. In order to maintain the highest security standards and promote security practices, occasionally Rescue by GoTo needs to make security improvements and deprecate these older encryption protocols.