É causada por um problema que está concluído, mas não concluído . Mais informações está disponível na Microsoft . A partir de hoje (19 de junho), ainda existem alguns casos extremos que não são tratados corretamente. O suporte total está atrasado para o início de julho (após a data de conformidade com o PCI).
(14 de maio)
This is actually working at the moment in blocking TLS 1.0, but the reports are catching an unsupported edge case which are deploying a fix for most likely by the end of the week. Reports like SSL Labs are marking TLS 1.0 in orange as is blocked, but not complete.
This issue is documented here:
(21 de maio)
This was delayed a bit, deploying right now and will be live in full during the first week of June, though some may see this update sooner.
(14 de junho - alguém perguntou)
TLS 1.0 is showing as being removed from port 443. Thank you.
However, an nmap scan still shows that port 455 has TLS 1.0 and TLS 1.1 enabled.
Could you please confirm that you're aware of this and are working on removing TLS 1.0 from port 455 as well?
(14 de junho - a resposta)
@anotherazureuser - the solution for that specific port will be deployed in 2-3 weeks. Stay tuned.