Microsoft has added official support for the TLS 1.1 and TLS 1.2 security protocols in SharePoint 2013 and SharePoint 2010. These protocols are now supported in the following on-premis products and technologies:
- SharePoint Server 2016
- Project Server 2016
- SharePoint Foundation 2013
- SharePoint Server 2013
- Project Server 2013
- SharePoint Foundation 2010
- SharePoint Server 2010
- Project Server 2010
The official information on TechNet has been updated to reflect the support for these security protocols:
- Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocol support in SharePoint 2010
- Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocol support in SharePoint 2013
You don’t need to install any SharePoint updates to achieve this support. However, you may need to download other updates and make some configuration changes on your SharePoint servers, database servers, and client computers to fully achieve TLS 1.2 support. Microsoft has created a guide for each version of SharePoint to explain the steps you’ll need to take:
- Enable TLS 1.1 and TLS 1.2 support in SharePoint Server 2016
- Enable TLS 1.1 and TLS 1.2 support in SharePoint 2013
- Enable TLS 1.1 and TLS 1.2 support in SharePoint 2010
Be aware that the steps in above listed articles only allow SharePoint to support these newer TLS protocol versions. To actually use them, you must configure your web applications, database servers, etc., to use encrypted connections instead of unencrypted connections. For example, you must configure your web applications to use an HTTPS binding instead of an HTTP binding. Refer to the feature documentation for steps on configuring the feature to use encrypted connections.
Permalink
Can you please provide the doumentation URL for for configuring this feature to use encrypted conenctions
Permalink
Hi Abhishek,
you can find it here:
https://support.microsoft.com/en-us/help/324069/how-to-set-up-an-https-service-in-iis
Cheers,
Stefan
Permalink
I know this is old. Is this automatically done in any of the CUs now? We are about 2 years behind on the Cumulative Updates.(i am working on that)
and is enabling it known to break anything?
Sharepoint 2013 on premises environment
Permalink
Hi Brian,
this is not bound to a specific patch level in SharePoint – but to patch levels in the OS and .NET.
Please read the articles I link to in the blog post. They contain specific steps including required patches.
Be aware that older SharePoint patch levels are no longer supported:
https://blog.stefan-gossner.com/2017/12/13/updated-product-servicing-policy-for-sharepoint-2013/
Cheers,
Stefan
Permalink
@Stefan, I could not find any article which talks about TLS1.2 for office webapp servers 2013. Can you pls confirm if Office webapp server 2013 supports TLS 1.2?? If yes, can you please guide me the right article which can be referred
Permalink
@Stefan, it would be really helpful if you can some insight about Office WebApp servers 2013??
Permalink
Hi Raghu,
Office WebApp server is supported by a different team and I forwarded the question to that team but I haven’t received the info so far.
If this information is business critical for you I would recommend to open a case with Microsoft support to get this answered.
Cheers,
Stefan
Permalink
This is my issue. SharePoint seems to work fine with on TLS 1.2 enabled but Office Web Apps 2013 fails to render or open documents unless TLS 1.0 is enabled.
Permalink
Hi Cedric,
this should work – at least if you are on the required .NET framework patch level.
See here for more details:
https://docs.microsoft.com/en-us/sharepoint/troubleshoot/lists-and-libraries/documents-not-displayed-in-web-browser-when-using-tls-1.2
Cheers,
Stefan