Raw Record Source

{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreidgrdvhiu6dqw6pb3xrpxfwk35gjuklkzu2t3rrbrbmewvgu37wnu",
    "uri": "at://did:plc:xxrzfynfiasdpbxteqxi4jgq/app.bsky.feed.post/3mkjbpe2c4422"
  },
  "description": "Exchange Online will retire support for legacy TLS 1.0 and 1.1 on POP3 and IMAP4 connections between July 1 and December 31, 2026. Connections must use TLS 1.2 or later; legacy clients may fail. Organizations should ensure all email clients and systems support TLS 1.2+ and update if needed.",
  "path": "/m365-message-center/message/mc1293480/",
  "publishedAt": "2026-04-28T00:00:07.000Z",
  "site": "https://blog.tophhie.cloud",
  "tags": [
    "legacy TLS endpoints"
  ],
  "textContent": "🚨\n\n**Major Update:** This post contains a significant change that may impact your organisation.\n\n**[Introduction]**\n\nWe are retiring support for legacy Transport Layer Security (TLS) versions for POP3 and IMAP4 connections to Exchange Online. This change improves security and aligns with current industry standards. TLS 1.0 and TLS 1.1 are no longer considered secure. Most modern email clients already use TLS 1.2 or later.\n\n**[When this will happen]**\n\n  * Rollout start: **July 1, 2026**\n  * Rollout end: **December 31, 2026**\n\n\n\nThe rollout will occur gradually worldwide.\n\n**[How this affects your organization]**\n\n_Who is affected_\n\n  * Microsoft 365 tenants using **POP3 or IMAP4 with Exchange Online**\n  * Admins managing email clients, applications, or devices that use POP or IMAP\n\n\n\n _What will happen_\n\n  * POP3 and IMAP4 connections will require**TLS 1.2 or later**.\n  * Connections using TLS 1.0 or TLS 1.1 will fail.\n  * Modern email clients are not expected to be affected.\n  * Legacy applications or devices may stop connecting.\n  * Custom or embedded systems may require updates.\n\n\n\n**[What you can do to prepare]**\n\n  * If you use POP or IMAP with Exchange Online, ensure email clients, applications, and libraries support TLS 1.2 or later and do not use legacy TLS endpoints.\n  * Review all POP and IMAP clients in your organization.\n  * Confirm support for TLS 1.2 or later.\n  * Update or replace clients that rely on legacy TLS.\n  * Validate TLS support with third‑party vendors.\n  * Inform helpdesk and operations teams.\n\n\n\nNo action is required if all connections already use TLS 1.2 or later.\n\n**[Compliance considerations]**\n\nNo compliance considerations identified. Review as appropriate for your organization.",
  "title": "MC1293480: Exchange Online: Retirement of legacy TLS versions for POP and IMAP connections",
  "updatedAt": "2026-04-28T00:00:07.436Z"
}