Application Gateway AppGwSslPolicy20170401S policy

Arnold Tomasovsky 21 Reputation points
2020-12-07T12:33:59.633+00:00

Hello,

I came a across an issue with the setup of the Application Gateway. We have applied, the latest, AppGwSslPolicy20170401S and since then our web site stopped working. It just displays the "The web page is not accessible.". When we roll back the policy, web site works.

TLS 1.0, works
az network application-gateway ssl-policy set -g kbc --gateway-name kbc-application-gateway

TLS 1.2 does not work
az network application-gateway ssl-policy set -g kbc --gateway-name kbc-application-gateway -n AppGwSslPolicy20170401S --policy-type Predefined

Does anyone have an idea what might be wrong?

Thanks a lot.

Azure Application Gateway
Azure Application Gateway
An Azure service that provides a platform-managed, scalable, and highly available application delivery controller as a service.
954 questions
0 comments No comments
{count} votes

Accepted answer
  1. TravisCragg-MSFT 5,676 Reputation points Microsoft Employee
    2020-12-08T03:16:05.933+00:00

    If you do not have SSL Termination, you will need to check 2 main things to make sure that your setup is compatible:

    1) Check your clients to make sure that they can connect using TLS 1.2 and the ciphers outlined. Both your OS and Browser might need to be configured to accept the connection.

    2) If you are using End to End SSL, make sure that your backend server can accept the TLS 1.2 connections.

    You can use SSL termination to rule out the backend, as the problem must be with the clients connecting.


0 additional answers

Sort by: Most helpful