Remove TLS 1.0/1.1 support #21
Labels
enhancement
New feature or request
logged u/s
Logged in upstream repo
merged u/s
When a fix has been merged upstream
PR sent u/s
TLS 1.0 and 1.1 are considered insecure and should be removed from internet exposed web endpoints (managed by the App Gateway), leaving TLS 1.2 and above available.
App Gateway TLS config documentation: https://learn.microsoft.com/en-us/azure/application-gateway/application-gateway-ssl-policy-overview
By default, the TRE is using 20150501 and should move to at least 20220101
Currently status scanning the TRE web portal:
The text was updated successfully, but these errors were encountered: