Skip to main content
Kofax

Configure MFP Emulator to use System Default TLS version

3023613

Question / Problem: 

How to configure the Kofax MFP Emulator to use the System default TLS version(s) for HTTPS communication with the Kofax TotalAgility (KTA) server

Answer / Solution: 

The Kofax MFP Emulator requires .NET Framework 3.5.1 and uses its Windows Communication Foundation to handle HTTP and HTTPS communications.  Unlike newer versions of .NET Framework, .NET Framework 3.5.1 does not use the System Default TLS versions by default.  Instead it uses TLS 1.0 and lower, which are hard coded into it.

However, .NET Framework 3.5.1 can be configured to use the System Default TLS versions that are enabled at the Operating System level. 

 

To configure the MFP Emulator to use the System Default TLS version(s):

  1. On the station(s) where MFP Emulator is installed, run regedit.exe
  2. Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\.NETFramework\v2.0.50727
  3. If one does not already exist, create a DWORD called SystemDefaultTlsVersions
  4. Set the SystemDefaultTlsVersions value to 1
  5. Navigate to HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v2.0.50727
  6. If one does not already exist, create a DWORD called SystemDefaultTlsVersions
  7. Set the SystemDefaultTlsVersions value to 1
  8. Reboot the machine

 

To enable TLS 1.2 on the station(s) where MFP Emulator is installed:

  1. Run regedit.exe
  2. Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols
  3. Create a new Key named TLS 1.2 if one does not already exist.
  4. In the TLS 1.2 Key, create a subkey named Client.
  5. In the Client Key, create a DWORD (32-bit) Value named DisabledByDefault.
  6. Set the DisabledByDefault value to 0.
  7. In the Client Key, create a DWORD (32-bit) Value named Enabled.
  8. Set the Enabled value to 1.
  9. Reboot the machine

 

Applies to:  

Product Version
KTA 7.3
  7.4
  7.5
  7.6
  7.7

 

 

  • Was this article helpful?