## Get Auto-Origin TLS KEX enrollment status for the given zone

`ssl.auto_origin_tls_kex.get(AutoOriginTLSKexGetParams**kwargs)  -> AutoOriginTLSKexGetResponse`

**get** `/zones/{zone_id}/settings/auto_origin_tls_kex`

When enabled, Cloudflare automatically selects the preferred TLS key-exchange algorithm to use when establishing the TLS connection to the zone's origin, picking from the algorithms permitted by the zone's `origin_tls_compliance_modes` setting. When disabled, the default key-exchange ordering is used.

### Parameters

- `zone_id: str`

### Returns

- `class AutoOriginTLSKexGetResponse: …`

  - `id: str`

  - `enabled: bool`

    Whether Auto-Origin TLS KEX selection is enabled for the zone.

  - `modified_on: datetime`

    Last time this setting was modified.

### Example

```python
import os
from cloudflare import Cloudflare

client = Cloudflare(
    api_token=os.environ.get("CLOUDFLARE_API_TOKEN"),  # This is the default and can be omitted
)
auto_origin_tls_kex = client.ssl.auto_origin_tls_kex.get(
    zone_id="023e105f4ecef8ad9ca31a8372d0c353",
)
print(auto_origin_tls_kex.id)
```

#### Response

```json
{
  "errors": [],
  "messages": [],
  "result": {
    "enabled": false,
    "id": "auto_origin_tls_kex",
    "modified_on": "2014-01-01T05:20:00.12345Z"
  },
  "success": true
}
```