TLS (Transport Layer Security) ensures that data transferred between your machine and Microsoft 365 is encrypted and secure.
Microsoft has deprecated TLS 1.0 and 1.1, and ShareGate Migrate will soon stop supporting those versions to ensure secure communication and compliance with modern security standards.
TLS 1.2 will be required to use the app.
Solutions
Choose one of the following options to enable TLS 1.2 support:
Install ShareGate Migrate on a supported operating system
TLS 1.2 is enabled by default on these Windows versions:
Windows 8.1
Windows 10 or 11
Windows Server 2012 R2 or later
Install ShareGate Migrate on a machine running one of the above to avoid configuration issues.
Enable TLS 1.2 manually using PowerShell (Advanced)
You can manually enable TLS 1.2 using PowerShell with the following steps:
Open PowerShell as Administrator.
Run the following script to enable TLS 1.2 support:
# Enable TLS 1.2 for client and server
New-Item -Path "HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2" -Force | Out-Null
New-Item -Path "HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client" -Force | Out-Null
New-Item -Path "HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server" -Force | Out-Null
# Set registry values for TLS 1.2 client
New-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client" -Name "Enabled" -Value 1 -PropertyType "DWord" -Force
New-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client" -Name "DisabledByDefault" -Value 0 -PropertyType "DWord" -Force
# Set registry values for TLS 1.2 server
New-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server" -Name "Enabled" -Value 1 -PropertyType "DWord" -Force
New-ItemProperty -Path "HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server" -Name "DisabledByDefault" -Value 0 -PropertyType "DWord" -Force
Force the use of strong cryptography for .NET Framework
Use this solution on an older system if none of the above solutions work.
Open PowerShell as Administrator.
Run the following commands:
# Set strong cryptography on 64-bit .NET Framework (version 4 and above)
Set-ItemProperty -Path 'HKLM:\SOFTWARE\Wow6432Node\Microsoft\.NetFramework\v4.0.30319' -Name 'SchUseStrongCrypto' -Value '1' -Type DWord
# Set strong cryptography on 32-bit .NET Framework (version 4 and above)
Set-ItemProperty -Path 'HKLM:\SOFTWARE\Microsoft\.NetFramework\v4.0.30319' -Name 'SchUseStrongCrypto' -Value '1' -Type DWord