Chat now with support
Chat with Support
Become a portal pro
Self Service Tools
Knowledge Base
My Account
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
RSS Feed
Support Essentials
Awards and Testimonials
Getting Started
License Agreement
Support Guide

Change Auditor Product Notification

Return
Informational

This is a proactive notification to all Change Auditor customers auditing Azure Active Directory and/or Office 365.

In Change Auditor the creation of the Azure AD or O365 audit templates are successful, however the audit event collection may fail if the agent server is not using TLS 1.2.

This issue is due to a security protocol change that Microsoft recently introduced for their Office 365 Management API. It now only allows TLS 1.2 for communication with the API. Lower versions of TLS will no longer work, and will prevent further auditing of the Office 365 platforms.

How does this affect me?

Because the Office 365 Management API is deployed in the cloud, this change affects all deployed versions of Change Auditor.

Where anything lower than TLS 1.2 is used on the server hosting the Change Auditor agent:

  • Azure AD and Office 365 auditing templates can be successfully created, but auditing of these platforms will fail
  • Where Azure AD or Office 365 auditing templates have already been created, auditing of these platforms will have begun to fail when the Microsoft change was released

Resolution

The server hosting the Change Auditor agent which is configured to audit Azure AD and Office 365 can be forced to use TLS 1.2. Once this change is made on the server, auditing will resume from where it first began failing.

Please review the following knowledge article, Azure AD or O365 audit event collection may fail if the agent server is not using TLS 1.2 for further details on this issue.

We apologize for the inconvenience this issue may have caused and we are working quickly to correct it.