Application gateways should have SSL min protocol version set to TLSv1.2 or higher

azure-applicationgateway
Esta página aún no está disponible en español. Estamos trabajando en su traducción.
Si tienes alguna pregunta o comentario sobre nuestro actual proyecto de traducción, no dudes en ponerte en contacto con nosotros.

Description

TLS 1.0 and 1.1 are deprecated protocols with known vulnerabilities. Application gateways should enforce TLS 1.2 or higher as the minimum protocol version. Azure supports three SSL policy types: Predefined (where the TLS version is determined by the policy name), Custom, and CustomV2. For Custom and CustomV2 policies, TLS enforcement is controlled via the min_protocol_version field.

Remediation

Update the Application Gateway SSL policy to enforce TLS 1.2 or higher. Select a Predefined policy that enforces TLS 1.2 or higher, or configure a Custom/CustomV2 policy with min_protocol_version set to TLS 1.2 or higher. For details on available policies, see Application Gateway SSL policy overview.