TLS 1.0 is disabled by default

Domino 12 disables Domino's support for TLS 1.0 by default, leaving TLS 1.2 as the currently supported TLS protocol version.

The TLS 1.0 protocol dates back to 1999 and offers very poor levels of security against the attacks that are prevalent in today's environment. Most modern web browsers and cloud service providers dropped support for the TLS 1.0 and TLS 1.1 protocols earlier this year and the IETF TLS WG has submitted a "die-die-die" internet draft for TLS 1.0 and TLS 1.1 to the IESG for publication as an RFC. (

Environments that still require TLS 1.0 for backwards compatibility can re-enable TLS 1.0 support by setting SSL_ENABLE_TLS_10=1 in the notes.ini file.