Is it possible to configure Azure Web site SSL protocols & ciphers -


i want able disable tls 1.0 protocol , rc4 cipher on azure website (or web app) , can't figure out if it's possible or not. (edit: aware ssl 3.0 disabled default on azure websites want disable tls 1.0)

i know registry settings update problem of course don't have access os.

there's nwebsec startup tasks allow configure web roles (or cloud service) understanding solution not apply web apps.

is there workaround?

update jan 2017

microsoft have completed feature whereby tls1.0 can disabled via app service environment configuration. it's possible set own ciphers through azure resource manager or change cipher suite order.

details available on custom configuration settings app service environments page.

original answer:

the original answer not possible configure in registry or ssl settings in azure web apps.

microsoft aware of pci compliance changes , update host machines web apps run on in own time frame. announced in january 2015 starting making updates on 18th july 2015 result in grade tls/ssl endpoints auzre web apps on sites http://ssllabs.com

it's on-going issue computing power increases , more vulnerabilities discovered , hosted web apps must rely on microsoft keep servers patched , up-to-date in timely manner.

this link has more background information on changes microsoft making: https://social.msdn.microsoft.com/forums/azure/en-us/50f1ab33-c22a-4629-951e-b7510f6b2cbe/upgrading-tlsssl-cryptography-for-azure-web-apps?forum=windowsazurewebsitespreview

and link tracks feature request asks ms disable insecure ciphers in web apps: http://feedback.azure.com/forums/169385-web-apps-formerly-websites/suggestions/7091994-disable-insecure-ciphers-in-azure-websites?page=2&per_page=20

if registry access , specific control of these settings requirement, azure options cloud service webroles or iaas vms.

vote get ms disable tls 1.0


Comments

Popular posts from this blog

jquery - How do you format the date used in the popover widget title of FullCalendar? -

asp.net mvc - SSO between MVCForum and Umbraco7 -

Python Tkinter keyboard using bind -