Zoom disabling TLS 1.0/1.1 for Cloud Room Connector

As part of Zoom’s ongoing effort to strengthen data security, the Conference Room Connector (CRC) will be migrated to Transport Layer Security (TLS) 1.2+ over the next twelve months. The migration will include Zoom disabling the option for all SIP/H.323 devices to use TLS 1.0 and 1.1 for encryption as part of the process of migration. Those devices that are trying to connect to a meeting that requires device encryption will be affected by this change, which will affect all SIP/H.323 devices. Zoom will impose this rule on all types of devices: both those managed through an API connector and those which are not managed by Zoom.

Zoom delayed the implementation of this encryption change for the CRC service in August of 2019. This is because it wanted to give customers time to prepare their endpoints/devices as well as update the firmware on their devices in advance of this encryption change.

How does this affect SIP/H.323 endpoints

In the event that you have enabled Require Encryption for 3rd Party Endpoints (H323/SIP) in your Zoom account, then the endpoint that you want to use for Zoom meetings needs to be able to support TLS 1.2 or higher. A device that does not support encryption or does not utilize TLS 1.1 or 1.0, will be unable to join the meeting and will receive a message stating that the room system must use encryption in order for the endpoint to be able to join the meeting.

We recommend our clients update as soon as possible the devices that rely on TLS 1.0 and 1.1 in preparation for this upcoming change, if they haven’t already done so.

See also  Specifying global dial-in countries/regions in Zoom App

Retirement timeline

Encryption protocol Retirement date
TLS 1.0 November 6th, 2020
TLS 1.1 March 28th, 2021