What is TLS?
TLS stands for “Transport Layer Security.” It’s a security system that protects your data when you communicate over the internet. Think of it like an encrypted envelope for your information. The system scrambles your data so only the intended recipient can read it.
Why disable older TLS versions?
TLS 1.0 and 1.1 are old. Microsoft disabled them in Windows 11 because they’re not as secure as newer versions like TLS 1.2 and 1.3. Newer is safer.
When do you need the old versions?
Some older programs and systems still need TLS 1.0 or 1.1 to work. If your older app won’t connect, it might need these old protocols. However, it’s better to update your old programs instead of turning on weaker security.
How to turn TLS 1.0 and 1.1 back on in Windows 11
Follow these steps only if you have an older app that absolutely needs these protocols. This is not recommended because it makes your computer less secure.
Step 1: Open the Registry Editor Windows Registry editor
Open the Registry Editor. This is where Windows stores system settings.
Step 2: Navigate to the TLS 1.0 folder for Client
Go to this location:
Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS\1.0\Client
Step 3: Create the Client folder if it doesn’t exist
If you don’t see a “Client” folder, right-click on “TLS\1.0” and create a new subkey called “Client.”
Step 4: Add the Enable value
Right-click in the empty space on the right side of the Client folder. Select New > DWORD (32-bit) Value. Name it Enable.
Step 5: Set the value to 1
Double-click the Enable item you just created. Type 1 in the “Value data” field. This turns TLS 1.0 on.
Step 6: Repeat for Server
Now go to this location:
Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS\1.0\Server
Follow the same steps above (Steps 3-5) for the Server folder.
Step 7: Do the same for TLS 1.1
Repeat all steps above, but use TLS\1.1 instead of TLS\1.0. Create or modify both Client and Server folders.
To turn TLS 1.0 and 1.1 off later: Delete the Enable items you created.
⚠️ Admin privileges required: You need admin rights to edit the Registry.
Summary
TLS 1.0 and 1.1 are old security protocols that Windows 11 disables by default because they’re not as safe as newer versions. If you have an older program that needs them, you can turn them back on using the Registry Editor. However, this is not recommended because it weakens your computer’s security. Instead, try to update your old programs to use newer TLS versions. If you do enable these old protocols, remember to turn them off again once you no longer need them.
Leave a Reply