TLS version configuration options through the GUI are available starting with Kerio Connect version 9.4. Older versions of the product had the same options but they were only configurable by editing configuration files manually.
This new option allows users to enforce a minimum TLS protocol version on inbound and outbound connections. Starting with Kerio Connect 9.4 you can now enforce a minimum TLS version on SMTP as well.
Enforcing higher TLS versions will increase the overall security of communication to and from your server, however it will also block communications to and from servers which only support lower versions of TLS or have no TLS support at all. It is important to take this in consideration before applying any chances.
Enforcement of TLS version will apply to the following protocols:
IMAPS, SMTPS, POP3, HTTPS
- Click on the Configuration (gear) Icon found on the left side of the Kerio Connect Administration interface.
- Click on Security.
- Click on the TLS Options tab
- Select the desired minimum TLS Protocol Version you wish to enforce in the drop down list box.