After creating the group policy described in Microsoft Security Advisory 3046015 my domain joined computers can no longer use IE to access the Office 365 sites... or Technet. (Access to these sites continues to be possible using Chrome.)

"Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting to https://technet.microsoft.com again. If this error persists, contact your site administrator."

Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting to https://myteamsite.sharepoint.com again. If this error persists, contact your site administrator.

On the bright side, tests report that the browser is safe from Freak after applying the policy.

Has anyone else experienced this?

-JW

• Moved by Mike KinsmanMicrosoft contingent staff Wednesday, March 18, 2015 4:36 AM security question?

It seems like the workaround described in MSA 3046015 effects ability to connect to a lot of servers in many domains... it seems like more than we are lead to believe would be effected by "Freak" vulnerability. 

I disabled the cipher-suite-order setting in GP and connectivity to sites was restored.

-jw

This issue should be resolved with Windows Update KB3046049. If the issue persists after resolving the vulnerability with Windows Update, please let us know.

Brandon
Windows Outreach Team- IT Pro
Windows for IT Pros on TechNet

Brandon,

I still can't get to my Office365 sharepoint site from IE11 or Chrome.  Getting the same message.  All 3 are enabled in IE.  KB3046049 is installed

Turn on TLS 1.0, TLS 1.1, and TLS 1.2 in Advanced settings and try connecting to

• Edited by Anonymous3423 Tuesday, March 31, 2015 3:56 PM

Hi Anonymous3423,

Have you undo the GP before install the security KB3046049?
"Known issues with this security update
If you applied the workaround that was documented in Microsoft Security Advisory 3046015, some internet services may no longer work. To avoid this issue, undo the workaround before you install this security update. To undo the workaround, follow these steps:
1.Start the Group Policy Object Editors. To do this, type gpedit.msc at a command prompt, and then press Enter.
2.Expand Computer Configuration, Administrative Templates, Network, and then click SSL Configuration Settings.
3.Under SSL Configuration Settings, double-click SSL Cipher Suite Order.
4.In the SSL Cipher Suite Order window, select Disabled, and then click OK. 
5.Close the Group Policy Object Editor, and then restart your computer. "

Best r

Hi Anonymous3423,

Have you undo the GP before install the security KB3046049?
"Known issues with this security update
If you applied the workaround that was documented in Microsoft Security Advisory 3046015, some internet services may no longer work. To avoid this issue, undo the workaround before you install this security update. To undo the workaround, follow these steps:
1.Start the Group Policy Object Editors. To do this, type gpedit.msc at a command prompt, and then press Enter.
2.Expand Computer Configuration, Administrative Templates, Network, and then click SSL Configuration Settings.
3.Under SSL Configuration Settings, double-click SSL Cipher Suite Order.
4.In the SSL Cipher Suite Order window, select Disabled, and then click OK. 
5.Close the Group Policy Object Editor, and then restart your computer. "

Best r

Hi Anonymous3423,

Can we get into the sharepoint site before ?Have you tried to reset the Internet Explorer to get an original configuration to have a check ?

Best r