We have an Azure Enterprise App using Azure App Proxy with the Azure App Proxy Connector (v1.5.1975) installed on an on-prem server.
Everything is working fine functionally with the app.
But I have noticed that TLSv1.0 and TLSv1.1 appear to be enabled when querying the app from the internet (i.e. via Azure App Proxy service). Used ssllabs online tool and openssl to test/confirm this.
My understanding is that legacy TLS versions are no longer supported/present in Azure and the Azure App Proxy Connector installed only supports TLS v1.2. I can't find any configuration options for TLS in Azure Enterprise App or Azure App Proxy settings.
I've confirmed that only TLSv1.2 is enabled on the Azure App Proxy Connector server (Server 2016).
The target on-prem app/web server does have legacy TLS versions (and SSLv3 ... I know!) enabled but I assume that the Azure App Proxy would only allow TLSv1.2 connections. Is this correct?
Can anyone please shed any light on this? My searching skills have failed me thus far.