Update application-gateway-ssl-policy-overview.md

magilbe · web-flow · commit 812f6439c9d1 · 2019-12-27T08:34:11.000-06:00
This is based on the following Service Request: 119102524005182 The customer in this case had specifically requested that this article be changed to list those ciphers as not being advertised. This is expected to be fixed in the coming months however the customer would like to have this article changed to reflect that as well. And the following Work Item: https://msazure.visualstudio.com/One/_workitems/edit/5700261
diff --git a/articles/application-gateway/application-gateway-ssl-policy-overview.md b/articles/application-gateway/application-gateway-ssl-policy-overview.md
@@ -93,6 +93,17 @@ Application Gateway supports the following cipher suites from which you can choo
 > [!NOTE]
 > SSL cipher suites used for the connection are also based on the type of the certificate being used. In client to application gateway connections, the cipher suites used are based on the type of server certificates on the application gateway listener. In application gateway to backend pool connections, the cipher suites used are based on the type of server certificates on the backend pool servers.
 
+## Knonw Issue
+Currently we are aware that for Application Gateway V2 the following ciphers are not being proposed.
+- DHE-RSA-AES128-GCM-SHA256
+- DHE-RSA-AES128-SHA
+- DHE-RSA-AES256-GCM-SHA384
+- DHE-RSA-AES256-SHA
+- DHE-DSS-AES128-SHA256
+- DHE-DSS-AES128-SHA
+- DHE-DSS-AES256-SHA256
+- DHE-DSS-AES256-SHA
+
 ## Next steps
 
 If you want to learn to configure an SSL policy, see [Configure SSL policy on an application gateway](application-gateway-configure-ssl-policy-powershell.md).
