Plan for change: TLS 1.0 and TLS 1.1 soon to be disabled by default (original) (raw)
_Update as of 08/10/2022:
We are updating the timeframe for disabling TLS 1.0 and TLS 1.1 by default for Internet Explorer and EdgeHTML, the rendering engine for the WebView control. TLS 1.0 and TLS 1.1 will be disabled by default for both starting September 20, 2022.
Organizations that wish to disable TLS 1.0 and TLS 1.1 before that date may might do so using Group Policy. The Microsoft Edge Legacy desktop application is no longer in scope for this timeframe, as it reached end of support on March 9, 2021.
Please note: We are not deprecating TLS 1.0 and TLS 1.1 support. We are simply disabling it by default, giving organizations the option to turn it back on through Group Policy (if needed, for compatibility reasons). Individuals can turn it back on for their personal devices by navigating to Tools > Internet Options > Advanced in Internet Explorer.
For Microsoft Edge (based on Chromium), TLS 1.0 and TLS 1.1 were disabled by default starting in Microsoft Edge, version 84. The SSLVersionMin policy that permitted the enablment of legacy protocol versions was removed starting in Microsoft Edge, version 91.
As announced in October of 2018, Microsoft will soon disable Transport Layer Security (TLS) 1.0 and 1.1 by default in Microsoft browsers. In light of current global circumstances, we will be postponing this planned change—originally scheduled for the first half of 2020.
For the new Microsoft Edge (based on Chromium), TLS 1.0 and 1.1 are currently planned to be disabled by default no sooner than Microsoft Edge version 84 (currently planned for July 2020).
For all supported versions of Internet Explorer 11 and Microsoft Edge Legacy (EdgeHTML-based), TLS 1.0 and TLS 1.1 will be disabled by default as of September 8, 2020.
While these protocols will remain available for customers to re-enable as needed, we recommend that all organizations move off of TLS 1.0 and TLS 1.1 as soon as is practical. Newer versions of the TLS protocol enable more modern cryptography and are broadly supported across modern browsers, such as the new Microsoft Edge.