The configuration tlsSecurityProfile specifies TLS configurations
to be used while establishing connections with the externally exposed
servers. Though secure transport mode is used for establishing connections,
the protocols used may not always be strong enough to avoid interception and
manipulation of the data in transport. When Custom TLS Security profile is
used it's always better to configure TLS version 1.2 or newer to avoid any
security breaches.
Update minTLSVersion configured in Custom tlsSecurityProfile using the following command:
oc patch -n openshift-ingress-operator ingresscontrollers.operator.openshift.io default --type 'merge' --patch '{"spec":{"tlsSecurityProfile":{"custom":{"minTLSVersion":"VersionTLS12"}}}}'
For more information, follow
OpenShift documentation:
the relevant documentation.