TLS Deprecation

Sage is initiating this security update by configuring their Sage 100 subscription services to supported protocols and discontinuing the use of TLS 1.0 & 1.1. As of December 2023, Sage announced the deadline was extended to March 1, 2024.

Microsoft will disable Basic authentication and will require the use of modern authentication (OAuth) for connection to servers, services, and API endpoints, such as Exchange on-line and O365 email tenants. This means that in-product email services will stop working if customers are on versions of Sage 100 and Sage CRM prior to 2020.1. It is critical that all affected ERP users upgrade to the latest version of Sage.

Several older ERP system versions may be impacted, including older Sage 100 versions and more.

Sage is updating their security infrastructure to prevent exposure of customer data and to ensure Sage system environments are secure. Sage is initiating this security update by configuring their Sage 100 subscription services to supported protocols and discontinuing the use of TLS 1.0 & 1.1.

Basic authentication will be disabled in Exchange Online for Exchange, POP, and Outlook. In other words, every email user may be affected if they are using older email clients or if Basic authentication is still being used. This affects many ERP solutions including older versions of Sage 100.

Not updating affected ERP software versions, including older Sage 100 versions, increases the risk of major security and privacy threats. Updating to newer recommended ERP software versions mitigates susceptibility to evolving security threats that constantly grow more sophisticated (ransomware, etc.).

To maximize ERP solution value, upgrading to a currently supported version of your ERP, like Sage 100, is strongly encouraged to maintain compatibility with the software and take advantage of maintaining the application (technical support, product updates, software patches, interim releases, and hotfixes).

Security is a cornerstone ERP software technical support, and ERPs, including Sage, will only provide patches or hotfixes to maintain supported versions of the software.

Availability to adopt 3rd party products and new add-on features to your ERP system will only be offered by developers/ISVs for supported versions of the software.

Future changes in technology (operating systems or communication protocols) will only be available from Sage for supported versions of Sage 100.

The most predominant place where Basic authentication is used in an ERP, such as Sage 100, is with Paperless Office, where emails are leveraged for document automation.

Your Sage 100 solution will try to connect to the Microsoft email system, and since Microsoft no longer supports Basic authentication, the connection will not work.

Automated emails will fail and not be sent out, unless processed manually through a supported email client. These can be very important communications from your ERP software such as invoices, statements, purchase orders and more.