@McLaren, Shelley Kay Thanks for reaching out to Microsoft Q&A.
To enforce stricter security measures, you can configure your storage account to require that clients send and receive data with a newer version of TLS. If a storage account requires a minimum version of TLS, then any requests made with an older version will fail. If the clients that access this storage account are only your VMs that are using TLS 1.2, then, you do not need to enforce a minimum required version of Transport Layer Security (TLS). However, if you have other clients then, it may benefit with this option. This is not a required setting but it is advisable. Hope this helps.