Disable TLS 1.0 on Exchange 2013 CU20


Hi there,

I plan to disable TLS 1.0 on my Exchange 2013 CU20 VIP.

Anything to look out for? Did anyone complete this? We are getting ready for the PCI compliance requirement on June 30th, 2018.



1 comment

Tony Vaughan


the main thing i am aware of with the SSL protocols (SSL3, TLS) is that you need to confirm what type of clients are connecting,
with exchange 2013, clients using windows XP can't connect because (by default) they require SSL v3

also the Microsoft Remote Connectivity Analyzer (https://testconnectivity.microsoft.com/) will give an error message because it expects TLS 1.0 to be enabled I believe this is because some of the testing is based on outlook 2010