Getting the following vulnerability results from Tenable scans for APIM (API Management Service) and Azure SQL Server when we have already set min_tls_version to TLS 1.2

Kim Patrick Delos Reyes 26 Reputation points
2021-07-06T08:25:27.897+00:00

Getting the following vulnerability results from Tenable scans for APIM (API Management Service) and Azure SQL Server when we have already set min_tls_version to TLS 1.2

SSL Medium Strength Cipher Suites Supported (SWEET32)
TLS Version 1.0 Protocol Detection

The scan is made against domain <sqlservername>.database.windows.net

Azure API Management
Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
1,939 questions
Azure SQL Database
{count} votes

1 answer

Sort by: Most helpful
  1. KalyanChanumolu-MSFT 8,316 Reputation points
    2021-07-06T09:52:56.647+00:00

    @Kim Patrick Delos Reyes Thank you for reaching out.

    Please check if you have Minimum TLS version set to 1.2 on the Azure SQL Server.
    If yes, there shouldn't be any further action from your end.

    112142-image.png

    You may want to post this issue on the Tenable community for a more appropriate response on the scans.

    ----------

    If an answer is helpful, please "Accept answer" or "Up-Vote" which might help other community members reading this thread.
    And if you have further questions or issues, please let us know.