Disabling SSL 3.0 on server breaks Outlook for clients.

OAC Technology
OAC Technology used Ask the Experts™
on
In response to the results of a PCI compliance scan, I need to disable the use of SSLv3 to prevent POODLE attacks on my Windows 2012 R2 Standard server. However, when I disable SSLv3 on the Exchange 2013 (CU8) server, Outlook clients are unable to connect, but OWA is still accessible. Currently, SSLv3 is enabled to allow clients to continue using Outlook. SSLv1 and SSLv2 are disabled, along with TLS1.0, and TLS1.1 and TLS1.2 remain enabled.

What do I need to do to keep Outlook connected to Exchange for clients with SSLv3 disabled on the server?
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Exchange, AD, SQL, VMware, HPE, 3PAR, FUD, Anti MS Tekhnet, Pro EE, #1
Commented:
Hi,

Can you confirm this has been done as per this article?

https://www.digicert.com/ssl-support/iis-disabling-ssl-v3.htm

M
OAC TechnologyProfessional Nerds

Author

Commented:
Yes, did this but also had to update to the latest rollup as well to fix the issue

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial