Enforcing a minimum version of TLS - Amazon Command Line Interface
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Enforcing a minimum version of TLS

To add increased security when communicating with Amazon services, you should use TLS 1.2 or later. When you use the Amazon CLI, Python is used to set the TLS version.

Amazon CLI version 2 uses an internal Python script that's compiled to use a minimum of TLS 1.2 when the service it's talking to supports it. As long as you use version 2 of the Amazon CLI, no further steps are needed to enforce this minimum.