Disable <TLS 1.2 in Azure Portal

2
votes

I have a web app for which I'm trying to disable versions of TLS that are older than 1.2. ie: I do not want to support TLS 1.0 or 1.1.

1) I've set the below in Azure Portal.

SSL Disabled in Azure Portal

2) I created a simple webpage and uploaded it.

3) In IE Internet Options I disabled all TLS

Internet Options - Disabled TLS

4) I try to load the simple webpage and I correctly get the right error message.

Enable TLS error page from webpage

5) I enable TLS 1.0 only, refresh the webpage and it still works (I've tried this from multiple systems to avoid caching issues). This shouldn't work as TLS 1.2 is still disabled.

I've tried googling the error and only found How to know if an Azure Server is under TLS 1.2 which doesn't work. Has anyone got this working?

1
azureazure-web-app-servicetls1.2

1 Answers

2
votes

I enable TLS 1.0 only, refresh the webpage and it still works (I've tried this from multiple systems to avoid caching issues). This shouldn't work as TLS 1.2 is still disabled.

We could get App Service Team's reply from this blog. It will work soon.

This will only launch toward the middle of May, due to the discovery of a breaking change this has the potential of causing.