1. Knowledge Base
  2. MDaemon AntiVirus (SecurityPlus)

MDeamon Antivirus - Cyren AV updates are failing

The following article only applies to MDaemon versions 21.0.1 and below with MDaemon Antivirus enabled.

The content delivery network for the CTAV antivirus updates only supports TLS 1.2 connections. 

We have identified below operating systems that either do not support TLS 1.2 or would require a registry change or Window's update.

Windows 7, 8, Server 2008 R2, Server 2012
The OS supports TLS 1.2 but needs a registry change or an update to MD 21.0.2 for the AV Updater to use TLS 1.2. 


Windows Server 2008
Has no OS support for TLS 1.2, but support can be added via a Windows Update.  Without TLS 1.2, the Antivirus.ini file will need to be modified to use HTTP instead of HTTPS.  With TLS 1.2 support applied, the registry edit below would need to be applied.
 
 
In operating systems where a registry edit is required, please add the following key for the localsystem account.
 
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings
 SecureProtocols (DWORD) = 00000a80
 
The server will need to be restarted to apply registry changes.
 
Windows XP, Vista, Server 2003
Has no OS support for TLS 1.2.  Will need to be reconfigured to use HTTP instead of HTTPS.
 
To modify the MDaemon control file to use HTTP, navigate to the \MDaemon\SecurityPlus\ directory on the server, and open the AntiVirus.ini file in a text editor.  Change the URL01= URL from https to http, save the INI file, and restart MDaemon Antivirus.  Please note the AntiVirus.ini file will be rebuilt and reverted back to https when MDaemon is upgraded. 
 
We are currently working on MDaemon version 21.0.2 to force the use of TLS 1.2 if its available from the OS, without needing any changes.