Azure CDN Using Outdated TLS Encryption
Description
Code Example
terraform
resource "azurerm_cdn_endpoint_custom_domain" "example" {
name = "example-cdn-custom-domain"
# ... other configurations ...
cdn_managed_https {
# ... other configurations ...
+ tls_version = "TLS12"
# ... other configurations ...
}
# or
user_managed_https {
# ... other configurations ...
+ tls_version = "TLS12"
# ... other configurations ...
}
# ... other configurations ...
}Remediation
Terraform
Resource:
- azurerm_cdn_endpoint_custom_domain
Arguments:
- cdn_managed_https or user_managed_https
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0707 |
| Severity | MEDIUM |
| IaC Type | Terraform |
| Frameworks | Terraform, |
| Checkov ID | CKV_AZURE_200 |