By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

How to disable TLS v1.1 on regional API gateway

0

I have a regional API gateway, and I want to disable the use of TLS v1 and v1.1. An answer to another question indicated that regional APIs are restricted to v1.2 or higher already, but I am able to call my API with TLS v1.1 using Postman. Is there a way for me to force this now? Is this part of the upcoming changes AWS is making to eliminate old TLS versions?

Topics
ServerlessFront-End Web & MobileNetworking & Content DeliveryInternet of Things (IoT)
Tags
Amazon API GatewayTransport Layer Security (TLS)
Language
English
jalynn2
asked a year ago514 views
1 Answer
1
Accepted Answer

Hello,

The AWS Documentation on Amazon API Gateway provides the following information for choosing a minimum TLS version.

You can change the security policy by updating the domain name settings. To change the minimum TLS version, use one of the following commands, specifying the new TLS version (TLS_1_0 or TLS_1_2) in the securityPolicy parameter. Allow up to 60 minutes for the update to be completed.

Additional information can be found directly under Choosing a minimum TLS version.

AWS
Deane
answered a year ago
profile pictureAWS
EXPERT
Tushar_J
reviewed a year ago
profile pictureAWS
EXPERT
Brettski-AWS
reviewed a year ago
  • jalynn2
    a year ago

    I see now: I need to create a custom domain to use the security policy. Thanks.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content