Issue
When using the Call Web Service action to add a new record to Salesforce, the workflow errors with 'UNSUPPORTED_CLIENT: TLS 1.0 Has Been Disabled In This Organization'
Resolution
- Create a text file named strongcrypto4-enable.reg that contains the following text:
- For 32-bit applications on 32-bit systems and 64-bit applications on x64-based systems:
- HKEY_LOCAL_MACHINESOFTWAREMicrosoft.NETFrameworkv4.0.30319
- "SchUseStrongCrypto"=dword:00000001
- For 32-bit applications on x64-based systems:
- HKEY_LOCAL_MACHINESOFTWAREWow6432NodeMicrosoft.NETFrameworkv4.0.30319
- "SchUseStrongCrypto"=dword:00000001
- For 32-bit applications on 32-bit systems and 64-bit applications on x64-based systems:
- Run regedit.exe
- In Registry Editor, click the File menu and then click Import
- Navigate to and select the strongcrypto4-enable.reg file that you created in the first step. (Note If your file is not listed where you expect it to be, ensure that it has not been automatically given a .txt file extension, or change the dialog’s file extension parameters to All Files)
- Click Open and then click OK
- Exit Registry Editor and restart the system.
Error Code
UNSUPPORTED_CLIENT: TLS 1.0 Has Been Disabled In This Organization
Additional Information
.Net will natively use TLS 1.0 / SSL3 by default. The following registry changes will change the default behavior of the .Net framework to use the correct version of TLS: https://technet.microsoft.com/en-us/library/security/2960358.aspx#ID0ETHAE