https://azure.microsoft.com/en-us/updates/azure-support-tls-will-end-by-31-october-2024-2/
O suporte do Azure para TLS 1.0 e 1.1 termina em 31 de outubro de 2024. Preciso atualizar todas as MinimumTlsVersion
propriedades da conta de armazenamento.
Embora existam maneiras de fazer isso ( pwsh
Portal, ARM), fiquei curioso para saber se existe uma maneira de obter a lista de todos os armazenamentos que usam TLS <1.2.
# Ensure you're logged in to Azure
# Connect-AzAccount
# Set your Azure subscription ID
$subscriptionId = "your-subscription-id"
# Select the Azure subscription
Select-AzSubscription -SubscriptionId $subscriptionId
# Get all Storage accounts in the subscription
$storageAccounts = Get-AzStorageAccount
# Initialize an empty array to hold Storage accounts with TLS 1.0
$storagesUsingTls1_0 = @()
foreach ($storage in $storageAccounts) {
try {
# Attempt to fetch the storage account properties, including the minimum TLS version
$storageProps = Get-AzStorageAccount -ResourceGroupName $storage.ResourceGroupName -AccountName $storage.StorageAccountName
$tlsSetting = $storageProps.Encryption.MinimumTlsVersion
# Check if the TLS version is 1.0
if ($tlsSetting -eq "TLS1_0") {
# Add to the list
$storagesUsingTls1_0 += $storage
}
} catch {
Write-Host "Error retrieving TLS settings for storage account: $($storage.StorageAccountName)"
}
}
# Output the Storage accounts using TLS 1.0
$storagesUsingTls1_0 | Format-Table StorageAccountName, ResourceGroupName, Location, @{Name="TLS Version"; Expression={$_.Encryption.MinimumTlsVersion}}