Hi Mark, Currently it is not possible to manually customize the TLS versions on App engine.
However a feature request has been forwarded to the App Engine engineering team so that they may evaluate it. You can track the feature request here <https://issuetracker.google.com/issues/80295154>. Note that there are no ETAs or guarantees of implementation for feature requests. Also I have created a private issue on Issue Tracker so you can provide us the customs domains and the TLS specifications that you want. This will allow me to file a request so it can be done manually by our team. You can find this issue here <https://issuetracker.google.com/122469214>. On Sunday, December 23, 2018 at 10:14:59 PM UTC-5, Mark Kubacki wrote: > > Hello: > > I am using Google App Engine with a custom domain, which works so far. > > Switching *SSL security* to *Google-managed* employs a RSA 2048 > certificate for signing. > > Yet I'd like to use ECDSA P-256 (and ECDHE-ECDSA suites) – is there any > flag or command line option for this setting? (One exists but for DNSSEC.) > > -- > Thanks! > Mark Kubacki > -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/google-appengine. To view this discussion on the web visit https://groups.google.com/d/msgid/google-appengine/f96e783f-1174-4843-a9c5-917b380f37ba%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
