1. Open the GCP Console and go to the Load Balancing page.
2. Select the Load Balancer for which you want to enable TLS 1.3.
3. Click on the Edit button to open the Edit load balancer page.
4. In the Edit load balancer page, scroll down to the Frontend configuration section and click on the Edit button next to the HTTPS protocol.
5. In the Edit frontend configuration page, scroll down to the Advanced configuration section.
6. In the Advanced configuration section, click on the Add item button to add a new item to the list.
7. In the new item, set the Name to “tls-version” and the Value to “TLS_1_3”.
8. Click on the Save button to save the changes.
9. Click on the Update button in the Edit load balancer page to apply the changes to the Load Balancer.

​

1. Open the Cloud Shell on GCP Console, which is a command-line interface that can be used to run GCP CLI commands.
2. Run the following command to create a new SSL policy with TLS version 1.3 enabled:

gcloud compute ssl-policies create <ssl-policy-name> --profile=MODERN --min-tls-version=1.3

3. Run the following command to update the SSL policy for your load balancer:

gcloud compute target-https-proxies update <target-https-proxy-name> --ssl-policy=<ssl-policy-name>

4. Finally, run the following command to verify that TLS version 1.3 is enabled for your load balancer:

gcloud compute ssl-policies describe <ssl-policy-name> --format="get(minTlsVersion)"

1. Install the latest version of the Google Cloud SDK by running the following command in the terminal:

curl https://sdk.cloud.google.com | bash

2. Initialize the Google Cloud SDK by running the following command:

gcloud init

3. Create a new Python file and import the necessary libraries:

from google.cloud import compute_v1

4. Set up the Google Cloud client:

compute_client = compute_v1.ComputeClient()

5. Get the list of all load balancers in the project:

project_id = 'your-project-id'
load_balancers = compute_client.forwarding_rules().list(project=project_id).execute()

6. Loop through the list of load balancers and update their SSL policy to use TLS version 1.3:

for load_balancer in load_balancers['items']:
    forwarding_rule_name = load_balancer['name']
    forwarding_rule_region = load_balancer['region']
    ssl_policy_name = 'global/ssl-policies/TLS_1_3'

    # Get the current SSL policy of the load balancer
    forwarding_rule = compute_client.forwarding_rules().get(project=project_id, region=forwarding_rule_region, forwardingRule=forwarding_rule_name).execute()
    current_ssl_policy = forwarding_rule.get('sslPolicy')

    # Update the SSL policy to use TLS version 1.3
    if current_ssl_policy != ssl_policy_name:
        request_body = {
            'sslPolicy': ssl_policy_name
        }
        compute_client.forwarding_rules().setSslPolicy(project=project_id, region=forwarding_rule_region, forwardingRule=forwarding_rule_name, sslPolicyReference=request_body).execute()

7. Save the Python file and run it in the terminal:

python filename.py