IoT devices and applications to only use TLS 1.2 for communication with IoT Hub and DPS

Updated: 18 December, 2019

To provide best-in-class encryption, IoT Hub and Device Provisioning Service are moving to Transport Layer Security (TLS) 1.2 as the encryption mechanism of choice for IoT devices. As such, legacy support for TLS 1.0 and TLS 1.1 as well as several legacy ciphers will be deprecated in July 1st, 2020. Please see our documentation page for the details.

Based on customers’ specific circumstances and configurations, deprecation of TLS 1.0 and 1.1 and the supported ciphers can be an impactful change for your IoT devices and services communicating with IoT Hub or DPS. If your devices and services connect to IoT Hub or DPS using TLS 1.0 or 1.1, they will not be able to connect when support for TLS 1.0 and 1.1 is deprecated on July 1, 2020

It is therefore important that customers take appropriate action to prepare, test, and validate compatibility of their devices and services with TLS 1.2.

While the TLS 1.2 enforcement is an industry-wide best-in-class encryption choice and will be enabled as planned, we still would like to hear from customers regarding their specific deployments and difficulties adopting TLS 1.2. For this purpose, please send your comments to

Please see our documentation page for the details.

  • Azure IoT Hub
  • IoT Hub Device Provisioning Service
  • Security

Related Products