Zoom disabling TLS 1.0/1.1 for Cloud Room Connector

Over the next 12 months, Zoom will be making a phased migration of the Conference Room Connector (CRC) to Transport Layer Security (TLS) 1.2+ for increased data security. As part of this migration, Zoom will be disabling TLS 1.0 and 1.1 as encryption options for all SIP/H.323 devices. This change will affect all SIP/H.323 devices attempting to connect to a meeting that requires device encryption. This will be enforced for all device types: both managed with an API connector or unmanaged by Zoom.

While TLS 1.0 and 1.1 were disabled for other Zoom services in August of 2019, Zoom delayed the enforcing of this encryption change for the CRC service, to give customers time to prepare their endpoint/devices, including updating device firmware.

How does this affect SIP/H.323 endpoints

If your account has Require Encryption for 3rd Party Endpoints (H323/SIP) enabled, then the endpoint will need to support TLS 1.2 or greater to join a Zoom meeting. If encryption is not enabled on the device or utilizes TLS 1.1 or 1.0, the endpoint will not be able to join the meeting and will receive the message, that the room system will need to have encryption enabled.

Due to this upcoming change, we recommend customers update or replace all devices that rely on TLS 1.0 and 1.1 as soon as possible.

Retirement timeline

Encryption protocolRetirement date
TLS 1.0November 6th, 2020
TLS 1.1March 28th, 2021