Ensure 'Minimum TLS Version' is set to 'TLS 1.2' or higher
Why This Matters
Older TLS versions such as 1.0 and 1.1 contain known vulnerabilities that attackers can exploit to intercept or decrypt data transmitted between SQL Server and client applications. By enforcing TLS 1.2 or higher, you eliminate these risks and ensure that all connections use a modern, secure encryption protocol. Azure has ended support for TLS 1.0 and 1.1 as of August 2025, making this setting mandatory for ongoing security compliance.
What Aether365 Checks
This check verifies that each Azure SQL Database server has its "Minimum TLS Version" setting configured to "TLS 1.2" or higher. In the Aether365 dashboard, this check appears under the azure-sql-database section and will report any servers still allowing older TLS versions.