By default, vSphere supports the Transport Security Layer (TLS) 1.2 encryption protocol. The upgrade or migration from earlier releases disables the TLS 1.0 and TLS 1.1 encryption protocols, and you might need to reconfigure other VMware products and third-party products to use TLS 1.2.

During both upgrade and migration from, a notification message informs you that only the TLS 1.2 protocol is enabled. If you must use the TLS 1.0 and TLS 1.1 protocols to support products or services that do not support TLS 1.2, use the TLS Configurator Utility to enable or disable different TLS protocol versions. You can disable TLS 1.0, or you can disable both TLS 1.0 and TLS 1.1.

For a list of VMware products that support disabling TLS 1.0 and TLS 1.1, see VMware Knowledge Base article 2145796. To learn how to manage TLS protocol configuration and use the TLS Configurator Utility, see the VMware Security documentation.