1. ** ** Microsoft has identified a known issue with the deletion of SSL/TLS Cipher Suites settings in Intune policies. When users attempt to remove these settings, the Windows platform fails to process the deletion correctly, resulting in a ‘blank value’ instead. A recent update has modified Intune’s behavior to prevent this issue by retaining the existing settings, requiring users to create new policies to revert to default values.2. **Unique in HTML:**

“`html

Understanding the SSL/TLS Cipher Suites Issue in Intune

Recently, the Microsoft Intune Support Team highlighted a significant issue regarding the deletion of SSL/TLS Cipher Suites settings. This problem affects how Windows processes deletion requests from the Intune service. Let’s dive into what this means for users and administrators.

What’s New?

When administrators attempt to delete the SSL Cipher Suites setting from policies, Windows does not execute the deletion as expected. Instead, it recognizes a ‘blank value’ rather than removing the setting entirely. This can lead to confusion and potential security risks.

“When the setting is removed, the Windows platform doesn’t correctly process the ‘delete’ requested by the Intune service.”

Major Updates

In response to this issue, Microsoft has implemented changes in the July (2407) service-side release. Now, if an administrator removes the SSL Cipher Suites setting from a policy, Intune will retain the existing value instead of deleting it. This update aims to prevent unintentional security gaps.

To revert to default settings, users must create a new policy that explicitly sets the Cipher Suite defaults for each Windows OS version. This requires careful planning and execution to ensure compliance and security.

Steps to Revert to Default Settings

1. Navigate to the Microsoft Intune admin center.
2. Create a new policy or policies.
3. Explicitly set the Cipher Suite defaults using assignment filters based on OS version.

For detailed information on Windows OS defaults, refer to the Cipher Suites in TLS/SSL (Schannel SSP).

What’s Important to Know?

Understanding this issue is crucial for IT administrators managing security policies. The inability to delete the SSL Cipher Suites setting could lead to unintended consequences, such as outdated security protocols being used. Therefore, staying informed and proactive is essential.

“We’ll update this post as new information becomes available.”

For any questions or comments, users can reach out to the Intune team on X@IntuneSuppTeam. Keeping communication open will ensure that everyone stays updated on this critical issue.

From the Intune Customer Success articles

Related Posts

Unlock New Possibilities with Windows Server Devices in Intune!

  Windows Server Devices Now Recognized as a New OS in Intune Microsoft has announced that Windows Server devices are Read more

Simplifying the Windows Autopilot Pre-Provisioning Process with Intune

Microsoft recently announced an update to the Windows Autopilot pre-provisioning process to give organizations more control over the applications that Read more

Unlock the Power of Windows Server Devices with Intune’s Latest Update

Microsoft Intune now identifies Windows Server devices as a new device type, allowing IT admins to better manage and secure Read more

Unlock the Power of Microsoft Store Apps with Intune Support!

Microsoft has announced that they are now supporting the new Microsoft Store apps in Intune. This will enable customers to Read more