Is there an easy way to confirm my application is already using TLS 1.2?

Glenn Seehausen 0 Reputation points
2024-09-20T20:44:36.9166667+00:00

With Azure requiring TLS 1.2 or later as of Oct 31, I am wondering if there is an easy way to determine whether my applications (written in .NET using Framework 4.7) that communicate with SQL Server in Azure are already using TLS 1.2? I'd hate for my customers to get impacted on November 1, so I'd like to 100% confirm this prior to then. For example, ideally, on a weekend (when users are not using my software) between now and October 31 it would be great if the requirement for TLS 1.2 could be enforced for a short period of time in my Azure SQL Server so I can find out. Is this possible? Any other suggestions?

Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,839 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Bruce (SqlWork.com) 65,556 Reputation points
    2024-09-20T21:04:15.88+00:00
    0 comments No comments

  2. Ian Xue 37,106 Reputation points Microsoft Vendor
    2024-09-25T03:23:04.0366667+00:00

    Hi Glenn,

    Thanks for your post. To determine the incoming TLS version for Azure Storage, you can enable logging for your Azure Storage account and analyze the logs after an interval of time to detect what versions of TLS client applications are using and you can use this MS-Document to monitor the storage.

    Here is a sample query to determine which clients made requests with a version of TLS older than TLS 1.2 over the past seven days:

    Query:

    StorageBlobLogs

    | where AccountName == "<your-storage account-name>" and TlsVersion != "TLS 1.2"

    | project TlsVersion, CallerIpAddress, UserAgentHeader

    Reference: tls1.2 - How to determine incoming TLS version for Azure Storage - Stack Overflow

    Note: This is a non-Microsoft website. The page appears to be providing accurate, safe information. Watch out for ads on the site that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the site before you decide to download and install it. Hope this helps.

    Best Regards,

    Ian Xue


    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.