Is custom TLS cipher suite configuration supported for Azure Front Door Premium in Azure Government?

Question

Is custom TLS cipher suite configuration supported for Azure Front Door Premium in Azure Government?

Javal Patel 20

We are using Azure Front Door Premium in Azure Government as our public endpoint. TLS is terminated at Front Door.

A recent vulnerability assessment scan identified the following cipher suites as enabled on our Front Door endpoint:

TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256

The scanner detects these CBC-based TLS 1.2 cipher suites at the Front Door layer.

We do not see any option in the Azure Government portal to customize or disable specific TLS cipher suites for Front Door Premium. The only visible setting is the minimum TLS version, which is already set to TLS 1.2. User's image

Vallepu Venkateswarlu 6,135 Reputation points Microsoft External Staff Moderator

2026-02-24T16:39:06.9233333+00:00

Hi @ Javal Patel

Can you please share the requested details in private message for further troubleshoot.
Vallepu Venkateswarlu 6,135 Reputation points Microsoft External Staff Moderator

2026-03-04T09:22:26.0066667+00:00

Hi @ Javal Patel,

We have checked with the internal team regarding your concern. TLS 1.2 is enabled by default, and there is currently no option to customize this setting. This behavior is expected, as enabling additional flexibility requires changes to the underlying legacy platform.

The team is actively working on the required platform updates to support this feature in the Azure Government portal. Once the feature is available, updates will be communicated accordingly.

We will provide this update on the Azure Update page: Azure updates | Microsoft Azure

Please "upvote" if the information helped you. This will help us and others in the community as well.

Answer accepted by question author

0 additional answers

Your answer

Vallepu Venkateswarlu 6,135 Reputation points Microsoft External Staff Moderator

2026-02-24T16:39:06.9233333+00:00

Hi @ Javal Patel

Can you please share the requested details in private message for further troubleshoot.
Vallepu Venkateswarlu 6,135 Reputation points Microsoft External Staff Moderator

2026-03-04T09:22:26.0066667+00:00

Hi @ Javal Patel,

We have checked with the internal team regarding your concern. TLS 1.2 is enabled by default, and there is currently no option to customize this setting. This behavior is expected, as enabling additional flexibility requires changes to the underlying legacy platform.

The team is actively working on the required platform updates to support this feature in the Azure Government portal. Once the feature is available, updates will be communicated accordingly.

We will provide this update on the Azure Update page: Azure updates | Microsoft Azure

Please "upvote" if the information helped you. This will help us and others in the community as well.

Answer 1

Vallepu Venkateswarlu 6,135 Microsoft External Staff Moderator

Hi @ Javal Patel

Welcome to Microsoft Q&A Platform.

Thank you for contacting us about the Azure Front Door Premium TLS issue.

As discussed offline on Teams, customizing or disabling specific TLS cipher suites for Front Door is currently not supported in the Azure Government portal.

You can find the update in Azure Update page: Azure updates | Microsoft Azure

Pleaseand “up-vote” wherever the information provided helps you, this can be beneficial to other community members.

Share via

Is custom TLS cipher suite configuration supported for Azure Front Door Premium in Azure Government?

0 additional answers

Your answer