Any way to restrict ASP.NET Core 2.0 HTTPS to TLS 1.2?

c# asp.net asp.net-core .net-core

12,323

Solution 1

There's a UseHttps overload that allows you to provide a HttpsConnectionAdapterOptions instance to configure this. Here's an example of what this might look like in your case:

listenOptions.UseHttps(new HttpsConnectionAdapterOptions
{
    ...
    SslProtocols = SslProtocols.Tls12
});

For reference, SslProtocols defaults to SslProtocols.Tls12 | SslProtocols.Tls11.

Solution 2

.net core 2.1 Kestrel config:

.UseKestrel(c =>
            {
                c.ConfigureHttpsDefaults(opt =>
                {
                    opt.SslProtocols = SslProtocols.Tls12;
                });
            })

12,323

Author by

Giallo

Updated on July 29, 2022

Comments

Giallo almost 2 years

I have an ASP.NET Core 2.0 REST server running fine, but I need to restrict access to TLS1.2 - how do I do this? Can't seem to find any documentation on it. Server is running on Kestrel. Thanks!

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?

How to troubleshoot crashes detected by Google Play Store for Flutter app

Cupertino DateTime picker interfering with scroll behaviour

Why does awk -F work for most letters, but not for the letter "t"?

Flutter change focus color and icon color but not works

How to print and connect to printer using flutter desktop via usb?

Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0

Flutter Dart - get localized country name from country code

navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage

Android Sdk manager not found- Flutter doctor error

Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)

How to change the color of ElevatedButton when entering text in TextField

Related

Model bound complex types must not be abstract or value types and must have a parameterless constructor

How to write custom actionResult in asp.net core

ASP.NET Core Singleton instance vs Transient instance performance

Where's the NuGet package location in ASP.NET Core?

ASP.NET 5 (vNext) - Getting a Configuration Setting

How to get absolute path in ASP.Net Core alternative way for Server.MapPath

Receive file and other form data together in ASP.NET Core Web API (boundary based request parsing)

Return View as String in .NET Core

How should I inject a DbContext instance into an IHostedService?

Which web server are you using in production for ASP.NET Core on a *nix server?