Overview

This article aims to provide a general guide on which SSL versions are supported by ASP.NET. As many remote systems (such as payment gateways) enforce TLS 1.2 to be used, you may encounter issues with your .NET application where a lower TLS version is used.

Information

We highly recommend you update to .NET 4.6 to ensure compatibility with most services.

Supported TLS Versions

You can use the below reference table to determine which SSL version your target framework has available.

.NET Framework Version(s)Supported SSL Version(s)
.NET 3.5 – 4.5.2SSL3
TLS 1.0
TLS 1.1
TLS 1.2 (With hotfix)
.NET 3.5 – 4.5.2
(WCF)
SSL3
TLS 1.0
.NET 4.6 – 4.8SSL3
TLS 1.0
TLS 1.1
TLS 1.2

Default TLS Version Used

When using system defaults, the following versions are used for outbound connections:

.NET Framework Version(s)Supported SSL Version
.NET 3.5 – 4.5.2Lowest available on operating system (TLS 1.0)
.NET 4.6 – 4.8TLS 1.2

Conetix also enforces the use of TLS 1.2 for incoming connections.

For .NET versions prior to 4.8, you can enforce TLS 1.2 so that you can make secure connections from your .NET hosting to a remote service (eg, a payment gateway).

If you’re not sure which .NET framework your application can support, we recommend contacting your developers.

Was this article helpful?

Related Articles