Ensure 'Minimum TLS Version' is set to 'TLS 1.2' or higher

Why This Matters

Using outdated TLS versions exposes your Azure SQL databases to known cryptographic vulnerabilities. TLS 1.0 and 1.1 lack modern security features and have been deprecated by Azure, making them unsuitable for protecting sensitive data in transit. Enforcing TLS 1.2 or higher ensures encrypted connections use secure protocols and reduces the attack surface for man-in-the-middle and protocol downgrade attacks.

What Aether365 Checks

This check verifies that every Azure SQL Server has its minimum TLS version set to TLS 1.2 or higher. It appears in the Aether365 dashboard under the azure-sql-database checks section.

How to Fix

To manually set the minimum TLS version for an Azure SQL Server, follow these steps in the Azure portal: