Home

Disabling Weak Ciphers, Hashes And Protocols On ADFS, WAP, AAD Connect, Azure AD MFA Server

%3CLINGO-SUB%20id%3D%22lingo-sub-49727%22%20slang%3D%22en-US%22%3EDisabling%20Weak%20Ciphers%2C%20Hashes%20And%20Protocols%20On%20ADFS%2C%20WAP%2C%20AAD%20Connect%2C%20Azure%20AD%20MFA%20Server%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-49727%22%20slang%3D%22en-US%22%3E%3CP%3EHere's%20a%20very%20detailed%20post%20on%20disabling%20weak%20protocols%20and%20such%20for%20all%20the%20local%20components%20related%20to%20Office%20365.%20I've%20seen%20some%20people%20already%20complain%20about%20issues%20after%20trying%20to%20do%20this%2C%20but%20forgot%20or%20didnt%20know%20to%26nbsp%3Balso%20configure%26nbsp%3Bthe%20.NET%20part%2C%20so%20I%20thought%20I'd%20share%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fjorgequestforknowledge.wordpress.com%2F2017%2F03%2F01%2Fhardening-disabling-weak-ciphers-hashes-and-protocols-on-adfs-wap-aad-connect%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fjorgequestforknowledge.wordpress.com%2F2017%2F03%2F01%2Fhardening-disabling-weak-ciphers-hashes-and-protocols-on-adfs-wap-aad-connect%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHere's%20also%20a%20similar%20KB%20article%2C%20note%20the%20known%20issues%20listed%20there%3A%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-in%2Fhelp%2F3194197%2Fconsiderations-for-disabling-and-replacing-tls-1.0-in-adfs%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsupport.microsoft.com%2Fen-in%2Fhelp%2F3194197%2Fconsiderations-for-disabling-and-replacing-tls-1.0-in-adfs%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-49727%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Vasil Michev
MVP

Here's a very detailed post on disabling weak protocols and such for all the local components related to Office 365. I've seen some people already complain about issues after trying to do this, but forgot or didnt know to also configure the .NET part, so I thought I'd share:

 

https://jorgequestforknowledge.wordpress.com/2017/03/01/hardening-disabling-weak-ciphers-hashes-and-...

 

Here's also a similar KB article, note the known issues listed there: https://support.microsoft.com/en-in/help/3194197/considerations-for-disabling-and-replacing-tls-1.0-...

Related Conversations
AD+ADFS+AAD
Taen keren in Azure on
1 Replies
Azure Files with adfs
Stephane KLOIS in Azure on
0 Replies
Calendar not available for older AD accounts
_jancis in Microsoft Teams on
0 Replies