Drill on Direct Reports broken in EMSS after disabling TLS 1.0

We recently disabled TLS 1.0, 2.0 and 3.0 on our external facing webserver since they were flagged as potential vulnerabilities and have TLS 1.2 explicitly enabled. After performing this task, the drill to direct reports function became broken. The disable of TLS and Cipher registry keys was done using widely available Microsoft KB's as guidelines and everything else has been working fine on the system. Our internal webserver was not touched for TLS and the drill remains working there. We have performed extensive IOS and WAS logging with Infor support over the last week but cannot nail down the cause of the drill failure on the external. Has anyone experienced this issue? Thanks.

Find more posts tagged with

Comments

bhillz

Would the vulnerability also affect your internal servers? Meaning: shouldn't you also disable TLS 1.0, 2.0, 3.0 on the internal servers as well?

Or is everything in stages. After the external is resolved are you planning to move on to the internal?

Legacy Contributor

We will probably disable outdated versions of TLS internally as well but the primary concern and greatest security risk was with external facing servers. In the end JT-1071825 addresses the drill issue. We applied LSFCT_WIN2012_10000900P45339 but I think there is a new version of this big security rollup now released. Anyone interested can find more details in KB 1925597 or KB 2074536. Warning, this patch changes lots of things so be prepared for login screens to break and having to add SSOP identity properties to whitelist your login pages. This was not documented at the time we installed it, luckily Infor support saved us in the 11th hour.

Copyright © 2025 Infor. All rights reserved.