Share via

Is there an easy way to confirm my application is already using TLS 1.2?

Glenn Seehausen 0 Reputation points
2024-09-20T20:44:36.9166667+00:00

With Azure requiring TLS 1.2 or later as of Oct 31, I am wondering if there is an easy way to determine whether my applications (written in .NET using Framework 4.7) that communicate with SQL Server in Azure are already using TLS 1.2? I'd hate for my customers to get impacted on November 1, so I'd like to 100% confirm this prior to then. For example, ideally, on a weekend (when users are not using my software) between now and October 31 it would be great if the requirement for TLS 1.2 could be enforced for a short period of time in my Azure SQL Server so I can find out. Is this possible? Any other suggestions?

Windows for business | Windows Server | Devices and deployment | Configure application groups
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2024-09-25T03:23:04.0366667+00:00

    Hi Glenn,

    Thanks for your post. To determine the incoming TLS version for Azure Storage, you can enable logging for your Azure Storage account and analyze the logs after an interval of time to detect what versions of TLS client applications are using and you can use this MS-Document to monitor the storage.

    Here is a sample query to determine which clients made requests with a version of TLS older than TLS 1.2 over the past seven days:

    Query:

    StorageBlobLogs

    | where AccountName == "<your-storage account-name>" and TlsVersion != "TLS 1.2"

    | project TlsVersion, CallerIpAddress, UserAgentHeader

    Reference: tls1.2 - How to determine incoming TLS version for Azure Storage - Stack Overflow

    Note: This is a non-Microsoft website. The page appears to be providing accurate, safe information. Watch out for ads on the site that may advertise products frequently classified as a PUP (Potentially Unwanted Products). Thoroughly research any product advertised on the site before you decide to download and install it. Hope this helps.

    Best Regards,

    Ian Xue

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments
  2. Bruce (SqlWork.com) 83,666 Reputation points
    2024-09-20T21:04:15.88+00:00
    0 comments

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.