No announcement yet.

Microsoft 365 Ending Support for TLS 1.0

  • Filter
  • Time
  • Show
Clear All
new posts

  • Microsoft 365 Ending Support for TLS 1.0

    Just as a heads up for anyone who has applications which connect to Microsoft 365 (was Office 365), for example checking emails using POP3 or IMAP4, or sending emails using SMTP, they have officially deprecated TLS 1.0 and 1.1. They only support TLS 1.2 now, which means applications running on Windows XP and Vista which use Schannel won't work any longer.

    For developers, this essentially means Windows 7 is going to become the minimum supported platform, you should only attempt to negotiate using TLS 1.2 and not use any deprecated cipher suites.

    Preparing for TLS 1.2 in Office 365 and Office 365 GCC

    In the slightly good news department, they've decided to delay enforcing OAuth 2.0 for their Exchange servers until the 3rd quarter next year. The deadline was going to be October 13th, but they decided to kick that can down the road because of the pandemic. However, new tenants will still be required to use OAuth 2.0 for authentication. Bottom line, for existing customers of yours who are still using password authentication to access their Microsoft email accounts, they'll continue to be able to do so, for a little while longer.
    Mike Stefanik