![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 16%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDA%3C/text%3E%3C/svg%3E)
Azure Cloud Services
An Azure platform as a service offer that is used to deploy web and cloud applications.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 25%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
Hi, don't worry: .NET Framework 4.6.1 already supports TLS 1.2, and Azure SQL has been requiring it for some time, so if your site talks to Azure SQL today, it's already negotiating TLS 1.2; it only breaks if you force old protocols (TLS 1.0/1.1) or use outdated clients. Do this quick check: look in the ServicePointManager.SecurityProtocol/SslProtocols/WCF binding code and remove the pinning to old protocols (if necessary, set SecurityProtocolType.Tls12); verify the connection string with Encrypt=True; TrustServerCertificate=False;; in App Service, set Minimum TLS version = 1.2 and test; if you call third parties, test a TLS 1.2 handshake (from dev: openssl s_client -tls1_2 -connect your_site:443). Seeing TLS 1.3 in the browser is normal (browser → front-end), while the app running to backends like Azure SQL will use TLS 1.2. In the medium term, you can retarget to .NET 4.8 to stay in line, but come September 1st, nothing should break unless you're forcing TLS 1.0/1.1.