az network application-gateway ssl-policy

Manage the SSL policy of an application gateway.

Commands

az network application-gateway ssl-policy list-options

Lists available SSL options for configuring SSL policy.

az network application-gateway ssl-policy predefined

Get information on predefined SSL policies.

az network application-gateway ssl-policy predefined list

Lists all SSL predefined policies for configuring SSL policy.

az network application-gateway ssl-policy predefined show

Gets SSL predefined policy with the specified policy name.

az network application-gateway ssl-policy set

Update or clear SSL policy settings.

az network application-gateway ssl-policy show

Get the details of gateway's SSL policy settings.

az network application-gateway ssl-policy list-options

Lists available SSL options for configuring SSL policy.

az network application-gateway ssl-policy list-options [--subscription]

Examples

List available SSL options for configuring SSL policy.

az network application-gateway ssl-policy list-options

Optional Parameters

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

az network application-gateway ssl-policy set

Update or clear SSL policy settings.

To view the predefined policies, use az network application-gateway ssl-policy predefined list.

az network application-gateway ssl-policy set [--cipher-suites]
                                              [--disabled-ssl-protocols]
                                              [--gateway-name]
                                              [--ids]
                                              [--min-protocol-version]
                                              [--name]
                                              [--no-wait]
                                              [--policy-type]
                                              [--resource-group]
                                              [--subscription]

Examples

Set a predefined SSL policy.

az network application-gateway ssl-policy set -g MyResourceGroup --gateway-name MyAppGateway \
    -n AppGwSslPolicy20170401S --policy-type Predefined

Set a custom SSL policy with TLSv1_2 and the cipher suites below.

az network application-gateway ssl-policy set -g MyResourceGroup --gateway-name MyAppGateway \
    --policy-type Custom --min-protocol-version TLSv1_2 \
    --cipher-suites TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 TLS_RSA_WITH_AES_128_GCM_SHA256

Optional Parameters

--cipher-suites

Ssl cipher suites to be enabled in the specified order to application gateway.

value from: az network application-gateway ssl-policy list-options
--disabled-ssl-protocols

Space-separated list of protocols to disable.

value from: az network application-gateway ssl-policy list-options
--gateway-name

Name of the application gateway.

--ids

One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.

--min-protocol-version

Minimum version of Ssl protocol to be supported on application gateway.

value from: az network application-gateway ssl-policy list-options
--name -n

Name of Ssl predefined policy.

--no-wait

Do not wait for the long-running operation to finish.

--policy-type

Type of Ssl Policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

az network application-gateway ssl-policy show

Get the details of gateway's SSL policy settings.

az network application-gateway ssl-policy show [--gateway-name]
                                               [--ids]
                                               [--query-examples]
                                               [--resource-group]
                                               [--subscription]

Examples

Get the details of a gateway's SSL policy settings.

az network application-gateway ssl-policy show -g MyResourceGroup --gateway-name MyAppGateway

Optional Parameters

--gateway-name

Name of the application gateway.

--ids

One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.

--query-examples

Recommend JMESPath string for you. You can copy one of the query and paste it after --query parameter within double quotation marks to see the results. You can add one or more positional keywords so that we can give suggestions based on these key words.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.