Configuration Change: Tenants using Management API notifications service must update endpoints to support TLS 1.2

Originally posted by Microsoft Apr 28, 2022 Microsoft 365 suite 0 Comments

Azure Information Protection has now retired the use of Transport Layer Security (TLS) 1.0 and 1.1 and begun enforcing TLS 1.2 for all components and as part of a long-term shift to refuse legacy protocol and cipher suite connections, the Office 365 Management Activity API notifications service now utilizes only the transport layer security (TLS) 1.2 protocol. The move to TLS 1.2 is to ensure that our service is secure by default and in alignment with the rest of Microsoft 365 services as previously communicated (MC126199 in Dec 2017, MC128929 in Feb 2018, MC186827 in July 2019, MC218794 in July 2020, MC240160 in February 2021, MC292797 in October 2021, and MC335273 in February 2022).

Note: If your organization has already taken steps to migrate from TLS 1.0 and 1.1, you can safely disregard this message.

When will this happen:

As of April 22, 2022, the Office 365 Management Activity API notifications service stopped supporting TLS 1.0/1.1 traffic.

How this will affect your organization:

If you have configured Audit notifications via the Management API notifications service and your endpoints currently support lower than TLS 1.2, you will no longer be receiving notifications to retrieve new Audit data.

What you need to do to prepare:

To continue to receive Audit notifications via the Management API notifications service, please ensure that endpoints are updated to support TLS 1.2.

Review documentation for additional context on this change and steps to prepare for and migrate to TLS 1.2:

• Office 365 Management Activity API reference

• Preparing for TLS 1.2 in Microsoft Azure

Message ID: MC365114