Share via

Is there another way to disable weak TLS cipher suites in Azure Function App Consumption Plan?

Bruno Von Helde de Oliveira 20 Reputation points
2024-05-09T18:19:38.1633333+00:00

I saw that there is a way to choose Minimum Inbound TLS Cipher Suite directly through the configuration > General settings, but this feature only appears for Functions of the Elastic premium plan. Where can I point this configuration for Functions of the consumption plan?

Azure Functions
Azure Functions
An Azure service that provides an event-driven serverless compute platform.
0 comments
Answer accepted by question author
  1. TP 149.5K Reputation points Volunteer Moderator
    2024-05-09T18:53:38.5366667+00:00

    Hi,

    So far in Preview this feature is only available for Premium SKU Functions/App Services.

    One option you have for Consumption plan to accomplish similar goal is to set Minimum TLS version to 1.3 via General settings tab. In this way vulnerable ciphers are not supported since TLS 1.3 eliminated support for them.

    Naturally at some point in the future (if not already) it is likely a vulnerability will be found with cipher supported by TLS 1.3.

    Please click Accept Answer if the above was helpful.

    Thanks.

    -TP

    1 person found this answer helpful.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.