About TLS Communication
The Imprivata appliance secures outgoing and incoming communication using TLS. Imprivata supports TLS versions up to 1.3, but does not enforce any specific version. Your environmental configuration controls what forms of communication security are available and in place.
As a general rule, Internet Explorer uses the latest version of TLS or other protocol that it supports. In some cases, you may be able to enable more secure communication by patching your Windows installation. See the Microsoft Support site for more information.
This table outlines communication protocol support and default status by Windows version:
| Windows Version | TLS 1.2 | TLS 1.3 |
|---|---|---|
|
Windows Server 2012* |
Supported but disabled | Supported but disabled |
|
Windows Server 2012 R2 |
Enabled | Enabled |
|
Windows 10 Windows Server 2016 |
Enabled | Enabled |
| Windows Server 2019 | Enabled | Enabled |
By default, Windows versions denoted with an asterisk do not use a supported version of TLS without being configured to explicitly do so. Version 24.3 of the Imprivata agent addresses this by using a supported TLS version to communicate with the Imprivata appliance, regardless of how the Windows endpoint is configured. The Imprivata agent uses TLS 1.3.
If you are completing an enterprise migration to adopt 24.3, and are unable to upgrade to one of the latter versions, these Windows endpoints must be configured to use a supported TLS version as part of the migration process. The G4 migration documentation includes the required steps. For more information, see the Imprivata Upgrade Help.
