| Plugin Title | Client Certificates Enabled |
| Cloud | AZURE |
| Category | App Service |
| Description | Ensures Client Certificates are enabled for App Services, only allowing clients with valid certificates to reach the app |
| More Info | Enabling Client Certificates will block all clients that do not have a valid certificate from accessing the app. |
| AZURE Link | https://docs.microsoft.com/en-us/azure/app-service/app-service-web-configure-tls-mutual-auth#enable-client-certificates |
| Recommended Action | Enable incoming client certificate SSL setting for all App Services. |
- Log into the Microsoft Azure Management Console.
- Select the "Search resources, services, and docs" option at the top and search for App Services.
- Select the "App Services" by clicking on the "Name" link to access the configuration changes.
- On left navigation panel that opens, click on Configuration tab.</br
- Select General settings tab on the Configurations page.
- Scroll down to check for Incoming client certificates at the bottom and select one of the following "Required", "Allowed", or "Optional", according to requirement.
.
- Repeat above steps to ensures "Client Certificates" are enabled for "App Services", only allowing clients with valid certificates to reach the app.
"NOTE: This plugin shows positive result when HTTP2.0 is enabled"
