SMTP is not transported over TLS 1.1 or TLS 1.2 protocol in an Exchange Server 2010 environment


If you enable transport layer security (TLS) 1.1 or TLS 1.2 in a Microsoft Exchange Server 2010 environment, simple mail transfer protocol (SMTP) uses TLS 1.0 unexpectedly.


This issue occurs because of a hard-coded restriction that limits SMTP to use secure sockets layer (SSL) 3.0 and TLS 1.0 for transport.


To resolve this issue, install the following update:

Update Rollup 9 for Exchange Server 2010 Service Pack 3
Note This update removes the hard-coded restriction so that SMTP sessions can negotiate with any SSL or TLS protocols that are enabled in the host operating system.


Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.

More Information

For more information about TLS and SSL protocols, see What is TLS/SSL.
For more information about how to enable TLS 1.2 protocol in registry key, see TLS/SSL Settings.

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Any additional feedback? (Optional)

Thank you for your feedback!