Authentication issues with TLS 1.0 on Azure App Services


Microsoft has recently disabled support of TLS 1.0 on Azure App Services and switched to TLS 1.2 by default (see TLS plans for Azure App Service discussion). Technical details can be found here: TLS best practices with the .NET Framework.

Any .NET call relying on TLS 1.0 leads to authentication issues on Azure App Services:

System.Net.WebException: The underlying connection was closed: An unexpected error occurred on a send. --->
System.IO.IOException: Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host. --->
System.Net.Sockets.SocketException: An existing connection was forcibly closed by the remote host.
Note: That does not affect Sitecore XP 9.0 and later deployments.

You might also be interested in the following article: TLS 1.0 and 1.1 are deprecated for use with Azure Cache for Redis.


If you are not setting specific TLS version from the code, then you have to check the .NET Framework version used for standalone Web Apps:  

Existing Installations

Download and unzip Sitecore XP package published as a release artifact here:

Find a configuration patch and an assembly and include them within your solution.

New Installations

ARM templates (available at have been upgraded to include a fix into Web Deploy Packages.