![](\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\")
[German]Microsoft is planning to end support for TLS 1.0\/1.1 in its products (Windows, Office 365 etc.) and switch to TLS 1.2\/1.3. But it seems that this will cause some trouble at the moment. Here's a short summary of what I noticed the last days. <\/p>\n
<\/p>\n
Note: However, the topic is quite broken in some places. Recently this ZDNet article<\/a> pointed out that numerous Content Management Systems (CMS) or their plugins deactivate the validation of TLS certificates. But this is another construction site. <\/p>\n<\/blockquote>\n I mentioned it briefly in June 2018 in the blog post PSA: EOL for TLS 1.0\/1.1 support in Intune and Office 365<\/a>: Within this Technet blog<\/a> post, Microsoft announced that Intune would only support TLS 1.2 after October 31, 2018. Microsoft Office 365 will then also only be able to communicate with TLS 1.2 via https encryption (see also<\/a>). For administrators in corporate environments, this means that a number of devices and software products can no longer be used from the deadline 31.10.2018 due to a lack of TLS 1.2 support (I mentioned the devices in the blog post).<\/p>\n Microsoft is now clarified what 'end of support' means. At the end of October 2018 I found the article Microsoft Revises October Deadline on Using TLS 1.0 and 1.1 in Office 365<\/a> in Redmond Magazine. They mentioned a change within Microsoft's article Preparing to use TLS 1.2 in Office 365<\/a>.<\/p>\n As of October 31, 2018, Office 365 will no longer support TLS 1.0 and 1.1. This means that Microsoft will not fix new issues that are found in clients, devices, or services that connect to Office 365 by using TLS 1.0 and 1.1. <\/p>\n Note<\/strong> This doesn't mean Office 365 will block TLS 1.0 and 1.1 connections. There is no official date for disabling or removing TLS 1.0 and 1.1 in the TLS service for customer connections. The eventual deprecation date will be determined by customer telemetry and is not yet known. After a decision is made, there will be an announcement six months in advance unless we become aware of a known compromise, in which case we may have to act in less than six months to protect customers who use the services<\/em>.<\/p>\n<\/blockquote>\n On October 9, 2018, Microsoft released the Monthly Rollup Update KB4462923<\/a> for Windows 7 SP1 and Windows Server 2008 R2 Service Pack 1. I mentioned the update in my blog post Patchday: Updates for Windows 7\/8.1\/Server (10\/09\/2018). However, there were some installation issues (see Windows 7 SP1: Update KB4462923 re-released?<\/a> and Windows: Update issues and \u2013re-releases October 2018<\/a>). The update has been withdrawn and later re-released again. I lost track what Microsoft did with this update. A German blog reader posted a comment<\/a>, indicating that an update install error 0x80242006 may has something to do with TLS dependencies in .NET-Framework. But I have not details. <\/p>\n Report: The October Win7 Monthly rollup, KB 4462923, forces TLS 1.0 as the default protocol type, even when TLS 1.0 is disabled. Can you confirm? https:\/\/t.co\/Zg5ZVWNaFv<\/a><\/p>\n \u2014 Woody Leonhard (@woodyleonhard) 9. November 2018<\/a><\/p><\/blockquote>\nTransport Layer Security<\/a> (TLS) is a cryptographic protocols designed to provide communications security over a computer network. Historically, different TLS versions from 1.0, 1.1 to 1.2 and recently TLS 1.3 have been defined and are in use. Since encryption in TLS 1.0 and 1.1 is no longer considered secure, the IT industry is gradually trying to switch to TLS 1.2 and\/or TLS 1.3 for secure Internet connections. In June 2018 there was this article<\/a> from The Register that the IETF had started to make suggestions that TLS 1.0\/1.1 (also as a fallback solution) should be deprecated. Browser manufacturers announced to end support for TLS 1.0\/1.1 in 2020. Microsoft is also committed to replacing TLS 1.0\/1.1, but has noticeable difficulties. <\/p>\n
\n
End of support for TLS 1.0\/1.1 in Office 365 revised<\/h2>\n
\n
Update KB4462923 forced TLS 1.0?<\/h2>\n
\n