Skip to main content

Enabling TLS 1.2 for Method Sync Engine

If Method Sync Engine cannot connect, TLS 1.2 may need to be enabled for older Windows machines.

Updated yesterday

If you are using an older Microsoft Windows machine or server, you may need to migrate to the latest Transport Layer Security (TLS 1.2) protocol. Failing to do so will result in errors or failed authentications in the Method Sync Engine for QuickBooks Desktop.

Please consult the below chart to see if your platform needs to have TLS 1.2 enabled:

Windows Version

TLS Version

Windows 8.1 / 10 / 11

TLS 1.2 enabled by default. No action required.

Windows 7

Deprecated TLS. Must upgrade to TLS 1.2.

Windows Server
2022 / 2019 / 2016 / 2012R2

TLS 1.2 enabled by default. No action required.

Windows Server
2008R2 / 2012

Deprecated TLS. Must upgrade to TLS 1.2.

Windows XP and Vista

Does not support TLS 1.2. Must upgrade Windows.

NOTE: Every system has its own configuration settings and environment variables. The provided instructions are meant to be as generic as possible, but may not apply in every case. Customers may need to consult their IT administrator or system provider if issues persist.

Check if TLS 1.2 is enabled

To verify whether TLS 1.2 is already enabled on a Windows system, follow one of these methods:

Method 1: Check via Registry Editor

  1. Open Run (Win + R), type regedit, and press Enter.

  2. Navigate to: 

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client

  3. Look for the following values:

    • DisabledByDefault should be 0.

    • Enabled should be 1.

  4. Repeat the same steps for:

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server

Method 2: Check via PowerShell

  1. Open PowerShell as Administrator.

  2. Run the following command:

    [Net.ServicePointManager]::SecurityProtocol

  3. If TLS 1.2 is enabled, you should see Tls12 in the output.

Method 3: Check via Internet Options

  1. Open Run (Win + R), type inetcpl.cpl, and press Enter.

  2. Go to the Advanced tab.

  3. Scroll down to the Security section.

  4. Ensure Use TLS 1.2 is checked.

If none of these methods confirm TLS 1.2 is enabled, you may need to manually enable it.

Enable TLS 1.2

To enable TLS 1.2 on older Windows operating systems, follow these steps:

Windows 7 and Windows Server 2008 R2

  1. Ensure Service Pack 1 is installed on Windows 7.

  2. Download and install KB3140245 from the Microsoft Update Catalog.

  3. Install the Microsoft Easy Fix 51044 to add registry options for enabling TLS 1.2.

  4. Modify the registry settings for 

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client

    • Set DisabledByDefault to 0

    • Set Enabled to 1

  5. Modify the registry settings for 

    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server

    • Set DisabledByDefault to 0

    • Set Enabled to 1

  6. Enable TLS 1.2 for WinHTTP API applications:

    • Add DefaultSecureProtocols = 0x00000A00 to 

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\WinHttp

  7. Restart your computer to apply the changes.

Windows 8.1 and Windows Server 2012 R2

TLS 1.2 is enabled by default, but if disabled, you can manually enable it via Internet Options:

  1. Open Run (Win + R), type inetcpl.cpl, and press Enter.

  2. Go to the Advanced tab.

  3. Scroll down and check Use TLS 1.2.

  4. Click Apply and OK.

Windows XP and Vista [Not Supported]

Unfortunately, TLS 1.2 is not supported on Windows XP and Vista.

For more details, check out Microsoft's official guide or this comprehensive solution. Let me know if you need further clarification!

Did this answer your question?