Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocol support in SharePoint Server 2016

SharePoint Server 2016

We are in the process of combining the SharePoint Server 2013 and SharePoint Server 2016 content into a single content set. We appreciate your patience while we reorganize things. See the Applies To tag at the top of each article to find out which version of SharePoint an article applies to.

 

Topic Last Modified: 2016-11-14

Summary:This article describes the versions of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocol that SharePoint Server 2016 supports.

SharePoint Server 2016 supports the following versions of the TLS protocol:

  • TLS 1.2

  • TLS 1.1

  • TLS 1.0

For information about how to enable TLS support, see Enable TLS 1.1 and TLS 1.2 support in SharePoint Server 2016

SharePoint Server 2016 does not fully support SSL 3.0. This is because SharePoint disables SSL 3.0 connection encryption by default for some, but not all features.

NoteNote:
We recommend completely disabling the SSL 3.0 protocol due to its security vulnerability.
For additional information on how to completely disable SSL 3.0, see the "Disabled SSL 3.0 in Windows For Server Software" and "Disabled SSL 3.0 in Windows For Client Software" sections in Microsoft Security Advisory 3009008

SharePoint Server 2016 supports disabling the following versions of the SSL/TLS protocol:

  • TLS 1.2

  • TLS 1.1

  • TLS 1.0

  • SSL 3.0

NoteNote:
At least one of the following TLS protocols must remain enabled: TLS 1.0, TLS 1.1, or TLS 1.2.

Show: