Disabling Weak Ciphers, Hashes And Protocols On ADFS, WAP, AAD Connect, Azure AD MFA Server

%3CLINGO-SUB%20id%3D%22lingo-sub-49727%22%20slang%3D%22en-US%22%3EDisabling%20Weak%20Ciphers%2C%20Hashes%20And%20Protocols%20On%20ADFS%2C%20WAP%2C%20AAD%20Connect%2C%20Azure%20AD%20MFA%20Server%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-49727%22%20slang%3D%22en-US%22%3E%3CP%3EHere's%20a%20very%20detailed%20post%20on%20disabling%20weak%20protocols%20and%20such%20for%20all%20the%20local%20components%20related%20to%20Office%20365.%20I've%20seen%20some%20people%20already%20complain%20about%20issues%20after%20trying%20to%20do%20this%2C%20but%20forgot%20or%20didnt%20know%20to%26nbsp%3Balso%20configure%26nbsp%3Bthe%20.NET%20part%2C%20so%20I%20thought%20I'd%20share%3A%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fjorgequestforknowledge.wordpress.com%2F2017%2F03%2F01%2Fhardening-disabling-weak-ciphers-hashes-and-protocols-on-adfs-wap-aad-connect%2F%22%20target%3D%22_blank%22%20rel%3D%22nofollow%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fjorgequestforknowledge.wordpress.com%2F2017%2F03%2F01%2Fhardening-disabling-weak-ciphers-hashes-and-protocols-on-adfs-wap-aad-connect%2F%3C%2FA%3E%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHere's%20also%20a%20similar%20KB%20article%2C%20note%20the%20known%20issues%20listed%20there%3A%20%3CA%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-in%2Fhelp%2F3194197%2Fconsiderations-for-disabling-and-replacing-tls-1.0-in-adfs%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fsupport.microsoft.com%2Fen-in%2Fhelp%2F3194197%2Fconsiderations-for-disabling-and-replacing-tls-1.0-in-adfs%3C%2FA%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-49727%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
MVP

Here's a very detailed post on disabling weak protocols and such for all the local components related to Office 365. I've seen some people already complain about issues after trying to do this, but forgot or didnt know to also configure the .NET part, so I thought I'd share:

 

https://jorgequestforknowledge.wordpress.com/2017/03/01/hardening-disabling-weak-ciphers-hashes-and-...

 

Here's also a similar KB article, note the known issues listed there: https://support.microsoft.com/en-in/help/3194197/considerations-for-disabling-and-replacing-tls-1.0-...

0 Replies