Microsoft announces the deactivation of TLS 1.0 and 1.1 in its browsers

Microsoft has programmed the disabling of TLS 1.0 and 1.1. This security protocol will be inactive in Internet Explorer and Microsoft Edge (EdgeHTML engine) next month.

Redmond officially revealed the end of TLS 1.x in October 2018, setting the first half of 2020 as the deactivation date in its own browsers. However, due to the global health crisis, the choice to postpone this deadline was taken.

Coronavirus, Microsoft postpones disabling TLS 1.0 and 1.1 in its browsers

It should be noted that this end of support for TLS 1.0 and 1.1 does not mean that the protocol will disappear. In reality it is not removed from both browsers but only disabled by default. So if a company absolutely needs to use one of these versions, administrators can easily do so through a dedicated group policy.

The giant adds

“We are updating the default TLS 1.0 and TLS 1.1 disable delay for Internet Explorer and EdgeHTML, the WebView control rendering engine. Both TLS 1.0 and TLS 1.1 will be disabled by default starting September 13, 2022. Organizations that wish to disable TLS 1.0 and TLS 1.1 before this date can do so using Group Policy. The Microsoft Edge Legacy desktop app is no longer in scope for this period, as it reached end of support on March 9, 2021.”

Microsoft Edge and disabling TLS 1.0 and 1.1

If you are running the latest version of Microsoft Edge, these older versions of TLS are already disabled. Indeed for Microsoft Edge (based on Chromium), this protocol in version 1.0 and 1.1 has been deactivated by default from version 84 of the browser. The SSLVersionMin policy that allowed it to be enabled was removed starting with Microsoft Edge 91.

If you wish to activate this support in Internet Explorer, you must go to this address:

Outils > Options Internet > Avancé

Leave a Comment