Neglected assets

Azure SQL Managed Instance uses TLS version lower than 1.2

Platform(s)

Description

The Minimal Transport Layer Security (TLS) Version setting allows customers to control the version of TLS used by their Azure SQL Managed Instance. Setting a Minimal TLS Version ensures that subsequent, newer TLS versions are supported. For more information, please see the following link: https://learn.microsoft.com/en-us/azure/azure-sql/managed-instance/minimal-tls-version-configure?view=azuresql

  • Recommended Mitigation

    It is recommended to set Minimal TLS Version to 1.2 since it includes fixes for vulnerabilities found in previous versions and is the highest version of TLS supported in Azure SQL Managed Instance.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.