App Service web apps should have ‘Minimum TLS Version’ set to ‘1.2’


The TLS (Transport Layer Security) protocol secures transmission of data over the internet using standard encryption technology. Encryption should be set with the latest version of TLS. App service allows TLS 1.2 by default, which is the recommended TLS level by industry standards.

Portal Remediation Steps

  • Navigate to App Services.

  • In the left navigation, select TLS/SSL settings.

  • In Minimum TLS Version, select 1.2.

CLI Remediation Steps

  • To enable TLS 1.2:

az webapp config set --resource-group MyResourceGroup \
                     --name MyResourceName \
                     --min-tls-version 1.2