Control: Function apps should use the latest TLS version
Description
Periodically, newer versions are released for TLS either due to security flaws, include additional functionality, and enhance speed. Upgrade to the latest TLS version for Function apps to take advantage of security fixes, if any, and/or new functionalities of the latest version.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.appservice_function_app_latest_tls_versionSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.appservice_function_app_latest_tls_version --shareSQL
This control uses a named query:
select app.id as resource, case when configuration -> 'properties' ->> 'minTlsVersion' < '1.2' then 'alarm' else 'ok' end as status, case when configuration -> 'properties' ->> 'minTlsVersion' < '1.2' then name || ' not using the latest version of TLS encryption.' else name || ' using the latest version of TLS encryption.' end as reason , app.resource_group as resource_group , sub.display_name as subscriptionfrom azure_app_service_function_app as app, azure_subscription as subwhere sub.subscription_id = app.subscription_id;