Upgrading

This topic only applies to Secret Server On-Premises.

As of August 31, 2025, Microsoft retired TLS 1.0 protocol support for Azure Application Gateways. Thus, updates.thycotic.net now requires TLS 1.2 for all connections. Secret Server On-Premises instances released prior to 2018 may not support TLS 1.2 and will no longer receive update notifications after this change. All other product functionality will remain unaffected. Customers running older versions should upgrade to a supported version to continue receiving update notifications.

Ensuring Upgrade Security

Manual Rolling Upgrade

Minimizing Upgrade Downtime

Secret Server and Secret Server Cloud .NET Framework 4.8 Mandatory Upgrade

Upgrading Secret Server

Upgrading Secret Server Without Outbound Access

Upgrading Secret Server with Web Clustering