Add option to disable TLS 1.0 for the application proxy cloud endpoint
TLS 1.0 is an option for connecting to the cloud endpoint of the application proxy. This causes security audit tools to complain that TLS 1.0 is not in alignment with PCI and other compliance regimes.
There has been a toggle in the UI for the web app service to disable TLS 1.0 for nearly a year and the same option should be available for the application proxy too.

2 comments
-
Anonymous commented
@LIoyd Leider, I have done that but when the certificate expire in 6 months, TLS 1.0 is required to renew it.
-
Lloyd Leider commented
I heard indirectly from the Azure App Proxy feature team that it can be done by disabling TLS 1.0/1.1 on the servers where the App Proxy Connectors are running.