How can we improve Azure Active Directory?

← Azure Active Directory

Add option to disable TLS 1.0 for the application proxy cloud endpoint

TLS 1.0 is an option for connecting to the cloud endpoint of the application proxy. This causes security audit tools to complain that TLS 1.0 is not in alignment with PCI and other compliance regimes.

There has been a toggle in the UI for the web app service to disable TLS 1.0 for nearly a year and the same option should be available for the application proxy too.

9 votes
Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Ken H shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

2 comments

Sign in
(thinking…)
Sign in with: Microsoft
Forgot password?
Create a password
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Anonymous commented  ·   ·  Flag as inappropriate

    @LIoyd Leider, I have done that but when the certificate expire in 6 months, TLS 1.0 is required to renew it.

  • Lloyd Leider commented  ·   ·  Flag as inappropriate

    I heard indirectly from the Azure App Proxy feature team that it can be done by disabling TLS 1.0/1.1 on the servers where the App Proxy Connectors are running.

Azure Active Directory: Application Proxy

Categories

Feedback and Knowledge Base

(thinking…)
Hosted by UserVoice