App Service minimum TLS version#
App Service should reject TLS versions older then 1.2.
The minimum version of TLS that Azure App Service accepts is configurable. Older TLS versions are no longer considered secure by industry standards, such as PCI DSS.
App Service lets you disable outdated protocols and enforce TLS 1.2. By default, a minimum of TLS 1.2 is enforced.
Consider configuring the minimum supported TLS version to be 1.2. Also consider using Azure Policy to audit or enforce this configuration.
- Data encryption in Azure
- Enforce TLS versions
- Preparing for TLS 1.2 in Microsoft Azure
- Insecure protocols
- Azure template reference