Investigating TLS usage for SMTP in Exchange Online

hobbssjThe Connector report link is not displayed is your tenant does not have any mail flow connectors. As mentioned above, you can still find it via the Reports dashboard although there is little action for you to take if you have no connectors.

BGCBatesThe Secure Trust Portal should be accessed via the Secure Score site so I'll have the blog edited to remove the portal link.

Hong_Kong_Techpro_GMJohnnyReactionAs a service accepting connections, we have limited insights into what servers, applications, or devices you are using to connect to us. This blog and reports can only help you identify which of your mail flow connectors or mailboxes are associated with non-TLS1.2 usage. You need to determine which servers are associated with that connector or which clients or devices are associated with sending from that mailbox. We also do not produce most of those devices or software connecting to us so the instructions and steps to upgrade them to start using TLS1.2 are not known by us. The onus is on you to contact those manufacturers if you do not know how to upgrade them.

DeezuIf you do not want to or cannot upgrade a device or software that is not using TLS1.2, then you will need to set up your own local Exchange server or other mail server on-premises that supports TLS1.0 and TLS1.2. You devices would connect to it locally on your network using TLS1.0 and then it would connect to Office 365 using TLS1.2. You should be able to find instructions on how to set up an Exchange Server with Office 365 very easily online.

John TwohigMail flow between email servers uses "plain" SMTP instead of SMTP AUTH. However there still may be authentication involved such as when mail flow connectors are used. for example, if you have a connector that forces the use of TLS and is currently using TLS1.0, then when TLS1.0 is disabled by us, emails will fail to send.