Microsoft Teams and Skype for Business thoughts and news

Tom Arbuthnot MVP
Tom Arbuthnot MCSM Communications

This site uses cookies

Find this blog useful? Please take a second to share, thanks!

Microsoft no longer enforcing TLS 1.2 in Office 365 from October 31st 2018

Published 25/10/2018 - 6 Comments

In an interesting change of plan, originally Microsoft said in their KB that:

“In line with security best practices, and for very good reasons as Microsoft explain in their advisory, Microsoft is moving Office 365 to mandatory TLS 1.2.”

 

Now the same KB article has been updated on October 24th and says:

“ As of October 31, 2018, Office 365 will no longer support TLS 1.0 and 1.1. This means that Microsoft will not fix new issues that are found in clients, devices, or services that connect to Office 365 by using TLS 1.0 and 1.1.

Note This doesn’t mean Office 365 will block TLS 1.0 and 1.1 connections. There is no official date for disabling or removing TLS 1.0 and 1.1 in the TLS service for customer connections. The eventual deprecation date will be determined by customer telemetry and is not yet known. After a decision is made, there will be an announcement six months in advance unless we become aware of a known compromise, in which case we may have to act in less than six months to protect customers who use the services. “

https://support.microsoft.com/en-gb/help/4057306/preparing-for-tls-1-2-in-office-365

 

I am not a fan of Microsoft changing the text in these KB’s without a clear change log and explanation.

This seems to have been driven not by Lync Phone Edition, but by other Skype for Business endpoints, still in full mainstream support, that do not support TLS 1.2 yet. Microsoft Surface Hub and Skype Room Systems Version 2 (SRS v2) currently use TLS 1.0 or 1.1

Microsoft has committed to updating these before enforcing TLS 1.2 in Office 365.

“Microsoft will update Surface Hub, Skype Room Systems V2, Skype for Business Online, and server products to support TLS 1.2 before TLS 1.0 and 1.1 are deprecated for Office 365.” here

Thanks to some of my colleagues at Modality Systems for catching the change.

image

Tom Arbuthnot

Tom Arbuthnot

Principal Solutions Architect at Modality Systems
Tom Arbuthnot is Principal Solutions Architect at Unified Communications specialist Modality Systems. He is a Microsoft Certified Master and MVP, blogger, has a regular podcast with UCToday at tomtalks.show and is a regular speaker at events including Microsoft TechEd and Ignite. He co-runs The Microsoft UC User Group London.

6 comments

Microsoft Revises October Deadline on Working with TLS one. and one.one in Business office 365 - Redmondmag.com - Global Service Tech - 26/10/2018 Reply

[…] modified language in the advisory was mentioned in a website article by Tom Arbuthnot, a Microsoft MVP centered on Skype for Company technologies. The clarification may […]

Microsoft Revises October Deadline on Applying TLS 1. and 1.1 in Business 365 - Redmondmag.com - Field Services on Demand - 27/10/2018 Reply

[…] adjusted language in the advisory was famous in a blog site publish by Tom Arbuthnot, a Microsoft MVP focused on Skype for Business technologies. The clarification […]

Microsoft Revises Oct Deadline on Applying TLS one. and one.one in Workplace 365 - Redmondmag.com - Erpd Mashup - 28/10/2018 Reply

[…] adjusted language in the advisory was famous in a website post by Tom Arbuthnot, a Microsoft MVP concentrated on Skype for Business enterprise systems. The […]

Microsoft Revises Oct Deadline on Applying TLS 1. and 1.1 in Office 365 - Redmondmag.com - Ace Computer Mashup - 28/10/2018 Reply

[…] adjusted language in the advisory was famous in a site post by Tom Arbuthnot, a Microsoft MVP targeted on Skype for Organization technologies. The […]

jphn - 30/10/2018 Reply

This was always the case since it was announced previously

    Tom Arbuthnot - 31/10/2018 Reply

    I’m afraid it wasn’t. Originally 1.0 and 1.1 were going to be actively blocked. I quoted the original KB on my blog. We also did projects with customers to get them off Lync Phone Edition to meet this deadline.

Leave a Reply:


close

Weekly Email Update 
of all the key 
Microsoft Teams and Skype for Business News
every Tuesday

No Spam ever, I promise - Tom