Ensure server parameter 'tls_version' is set to 'TLSv1.2' (or higher) for MySQL flexible server
Why This Matters
TLS encryption between your MySQL flexible server and client applications is crucial for preventing man-in-the-middle attacks. Without enforcing TLSv1.2 or higher, the data stream can be intercepted and read by attackers. This configuration is also a key requirement under CIS Microsoft Azure Foundations for protecting sensitive data in transit.
What Aether365 Checks
Aether365 verifies that the tls_version server parameter for each Azure MySQL flexible server is set to TLSv1.2 or higher. This check appears in your Aether365 dashboard under the azure-mysql-server section.