Azure Virtual Machines
An Azure service that is used to provision Windows and Linux virtual machines.
8,311 questions
Automatic detection of the absence or outdated SSL certificate
dmytro-k
0
Reputation points
Hello,
Would be good to implement following feature for Microsoft Azure private endpoint service and related services behind.
In case if SSL certificate outdated or either not installed, insecure access to the online resource must be blocked.
SSL socket listener(s) could provide secure access to several web resources via communication port(s), but in case if even single resource has not valid certificate, communication must be stopped.
Would call that security quarantaine until remediation actions will be taken.
That will directly isolate unsafe online resource until the resource owner take necessary actions to restore secure communication with SSL certificate.
Warning in the browser that web resource is not safe works not really good, could be ignored.
Example of the communication with insecure web resource:
Kind regards,
Dmytro K.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 49%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVK%3C/text%3E%3C/svg%3E)
Vijayalaxmi Kattimani 1,070 Reputation points Microsoft Vendor2025-02-04T10:30:44.4966667+00:00 Hi @dmytro-k,
Welcome to the Microsoft Q&A Platform! Thank you for asking your question here.
Could you please specify the tags you added and the location of the database? Additionally, any further details would help us better understand the issue.
Thank you,
-
dmytro-k 0 Reputation points
2025-02-04T10:49:34.1366667+00:00 Hello Vijayalaxmi,
Tags were chosen automatically when I created this suggestion, edited.
I would like to get a feature that could detect unsafe web service where renewal of the SSL certificates is not automated.
Most of the Azure products offer automated renewal of the SSL certificates, but not all of them.
Several products are affected, like web services on VM's and etc, where SSL socket listener(s) with SSL certificates is in use.
I have no issues, that my idea based on experience with Microsoft Azure platform.
Kind regards,
Dmytro K.
-
dmytro-k 0 Reputation points
2025-02-04T14:32:18.76+00:00 Hello,
Additionally I did provide my idea and feedback via following link:
https://feedback.azure.com/d365community/idea/9a8b6255-58e1-ef11-b542-000d3a0fe806
Kind regards,
Dmytro K.
Sign in to comment
Sign in to answer