If your business is required to meet PCI compliance, hopefully you are aware that PCI compliant websites must abandon older forms of SSL and TLS encryption in favor or TLS 1.1 or better by June 30th, 2018. This change makes sense, and isn’t a huge ask of businesses, but does begin breaking compatibility with visitors using outdated browsers. One of the best aspects of using a Platform-as-a-Service (PaaS) or Software-as-a-Service (SaaS) is that the vendors are generally on top of these types of things for you. Today, Microsoft sent a notification to Azure customers running Azure App Services that they will automatically be updating the TLS settings of current running App Services on April 30th, 2018. Additionally, you have the option to go ahead and make the change yourself, as well as specify the new compatible settings when deploying a net new App Service.

The notification from Microsoft: