Category
planForChange
Severity
normal
Major change
True
Last modified
2026-07-07 20:14:00
Summary source
Azure OpenAI (gpt-4.1)
Action by (Graph)
2026-07-31 07:00:00
Action by (AI)
—
Services
Exchange Online
Tags
Updated message, User impact, Admin impact, Retirement
Master tags
Admin, Security
Roadmap IDs
One-line summary
Exchange Online will require TLS 1.2 or later for all POP3 and IMAP4 connections, as support for TLS 1.0 and 1.1 is being retired to enhance security.
Similar updates
More like thisMC1197103 (Updated) Exchange Online ActiveSync device support update
MC1092458 (Updated) Microsoft Exchange Online: New Message Trace will be GA; legacy Message Trace will retire
MC1199746 Take Action: Out-of-band update to address MSMQ service issues leading to queue operations and resource-related errors
MC1158908 (Update)Support for Events from email in Outlook is changing—Schema.org markup required for reliable calendar extraction
MC1191923 Microsoft Purview | Data lifecycle management – Auto archive for Exchange Online
MC846387 Microsoft Outlook: Replace quick compose pop-up with inline appointment creation in new Outlook for Windows and web
Details
Summary
Exchange Online will retire legacy TLS versions (1.0 and 1.1) for POP3 and IMAP4 connections from August 1 to December 31, 2026. Connections must use TLS 1.2 or later; older versions will fail. Organizations should ensure all email clients and applications support TLS 1.2+ and update legacy systems accordingly.
Body (from Message Center)
Updated July 7, 2026: We have updated the timeline. Thank you for your patience.
[Introduction]
We are retiring support for legacy Transport Layer Security (TLS) versions for POP3 and IMAP4 connections to Exchange Online. This change improves security and aligns with current industry standards. TLS 1.0 and TLS 1.1 are no longer considered secure. Most modern email clients already use TLS 1.2 or later.
[When this will happen]
- Rollout start: August 1, 2026
- Rollout end: December 31, 2026
The rollout will occur gradually worldwide.
[How this affects your organization]
Who is affected
- Microsoft 365 tenants using POP3 or IMAP4 with Exchange Online
- Admins managing email clients, applications, or devices that use POP or IMAP
What will happen
- POP3 and IMAP4 connections will require TLS 1.2 or later.
- Connections using TLS 1.0 or TLS 1.1 will fail.
- Modern email clients are not expected to be affected.
- Legacy applications or devices may stop connecting.
- Custom or embedded systems may require updates.
[What you can do to prepare]
- If you use POP or IMAP with Exchange Online, ensure email clients, applications, and libraries support TLS 1.2 or later and do not use legacy TLS endpoints.
- Review all POP and IMAP clients in your organization.
- Confirm support for TLS 1.2 or later.
- Update or replace clients that rely on legacy TLS.
- Validate TLS support with third‑party vendors.
- Inform helpdesk and operations teams.
No action is required if all connections already use TLS 1.2 or later.
[Compliance considerations]
No compliance considerations identified. Review as appropriate for your organization.
Raw JSON (for debugging)
Expand/collapse the full payload below.
Show/hide raw
{
"snapshot_item": {
"action_required_by": "2026-07-31T07:00:00Z",
"ai_action_required_by": null,
"ai_actions": [
"Review all POP and IMAP clients for TLS 1.2+ support",
"Update or replace legacy clients relying on TLS 1.0/1.1",
"Validate third-party vendor TLS support",
"Inform helpdesk and operations teams"
],
"ai_master_tags": [
"Admin",
"Security"
],
"ai_model": "gpt-4.1",
"ai_summary": "Exchange Online will require TLS 1.2 or later for all POP3 and IMAP4 connections, as support for TLS 1.0 and 1.1 is being retired to enhance security.",
"ai_topics": [
"Exchange"
],
"category": "planForChange",
"details_map": {
"Summary": "Exchange Online will retire legacy TLS versions (1.0 and 1.1) for POP3 and IMAP4 connections from August 1 to December 31, 2026. Connections must use TLS 1.2 or later; older versions will fail. Organizations should ensure all email clients and applications support TLS 1.2+ and update legacy systems accordingly."
},
"id": "MC1293480",
"importance": 5,
"is_major_change": true,
"last_modified": "2026-07-07T20:14:00Z",
"ms_products": [
"Exchange"
],
"platforms": null,
"roadmap_ids": [],
"services": [
"Exchange Online"
],
"severity": "normal",
"tags": [
"Updated message",
"User impact",
"Admin impact",
"Retirement"
],
"title": "(Updated) Exchange Online: Retirement of legacy TLS versions for POP and IMAP connections"
}
}