Microsoft is ending support for older TLS encryption POP3 and IMAP4 connections to Exchange Online, with the cutoff starting July 1, 2026. Any email client, app, or device that still uses these older encryption protocols will simply stop connecting, with no fallback and no warning on the day it happens. Most users running modern email software have nothing to worry about, but organizations with older integrations, legacy applications, or aging hardware that touches email need to check their setup.
Outdated security protocols on POP3 and IMAP4 email connections to Exchange Online will stop working starting July 1, 2026, any email client or app that connects using TLS 1.0 or TLS 1.1 will simply stop working. The cutoff completes on December 31, 2026.
If your email setup is reasonably modern, this change will pass without incident. If your organization has old integrations, custom applications, or aging hardware that touches email, act before July 2026.
If you or your organization uses POP or IMAP to connect to Microsoft 365 email, this is worth paying attention to now rather than in July.
What Is TLS and Why Does It Matter?
TLS (Transport Layer Security) is the encryption layer that protects your email from snooping as it travels over the Internet. Think of it as the lock on the door.
TLS 1.2, released in 2008, and TLS 1.3 are the current standard.
TLS 1.0 and 1.1 are old locks that security experts have known how to pick for years.
Microsoft has been moving away from the old versions for a while. This change has been a long time coming and some might say it’s way overdue.
Who Is Affected?
Most people are not affected at all.
Modern email apps like Outlook, Apple Mail, Thunderbird, and mobile email clients have supported TLS 1.2+ for years. If you updated your software any time in the last five or so years, you are almost certainly fine.
The risk is only with:
- Old email programs that have not been updated in a long time
- Custom or in-house applications that pull email via IMAP or POP, especially ones built more than a decade ago
- Embedded systems or devices such as older scanners, printers, or monitoring tools that send or receive email
- Third-party apps that integrate with Exchange Online using legacy libraries
What Happens If You Are Using Old TLS?
The connection fails. Completely. There is no graceful fallback. After Microsoft cuts the connection, the email client or application will not be able to log in at all. For a business process that depends on an old POP/IMAP integration, that is effectively a kill switch on July 1, 2026.
What to Do Now
The earlier you check, the more time you have to fix anything that needs fixing.
For individuals: If you are using a reasonably modern email app, no action is needed. If you are running something old and obscure, check the settings or documentation for TLS version support.
For IT administrators and business owners:
Identify every POP3 or IMAP4 connection in your environment. Check email clients, scripts, applications, and any device that sends or receives email.
Make sure they are using TLS 1.2 or higher. If not, changes are needed.
Transition to a More Secure Outlook.com Login
Using oAuth, or not, in Outlook programs or apps
Important Changes for Your Microsoft and Outlook.com Email
Office 2019 and Office 2016 Losing Important Connections in 2023
Find Out When Your Microsoft Office Support Ends
