diff --git a/octaviaclient/osc/v2/constants.py b/octaviaclient/osc/v2/constants.py
index cc32649..a028a12 100644
--- a/octaviaclient/osc/v2/constants.py
+++ b/octaviaclient/osc/v2/constants.py
@@ -76,7 +76,8 @@ LISTENER_ROWS = (
     'client_authentication',
     'client_crl_container_ref',
     'allowed_cidrs',
-    'tls_ciphers')
+    'tls_ciphers',
+    'tls_versions')
 
 LISTENER_COLUMNS = (
     'id',
diff --git a/octaviaclient/osc/v2/listener.py b/octaviaclient/osc/v2/listener.py
index 814ef3d..8c6ed7d 100644
--- a/octaviaclient/osc/v2/listener.py
+++ b/octaviaclient/osc/v2/listener.py
@@ -181,6 +181,15 @@ class CreateListener(command.ShowOne):
             help="Set the TLS ciphers to be used "
                  "by the listener in OpenSSL format."
         )
+        parser.add_argument(
+            '--tls-version',
+            dest='tls_versions',
+            metavar='<tls_versions>',
+            nargs='?',
+            action='append',
+            help="Set the TLS protocol version to be used "
+                 "by the listener (can be set multiple times)."
+        )
 
         return parser
 
@@ -482,6 +491,15 @@ class SetListener(command.Command):
             help="Set the TLS ciphers to be used "
                  "by the listener in OpenSSL format."
         )
+        parser.add_argument(
+            '--tls-version',
+            dest='tls_versions',
+            metavar='<tls_versions>',
+            nargs='?',
+            action='append',
+            help="Set the TLS protocol version to be used "
+                 "by the listener (can be set multiple times)."
+        )
 
         return parser
 
diff --git a/octaviaclient/osc/v2/utils.py b/octaviaclient/osc/v2/utils.py
index a02b44c..db6ce93 100644
--- a/octaviaclient/osc/v2/utils.py
+++ b/octaviaclient/osc/v2/utils.py
@@ -226,6 +226,7 @@ def get_listener_attrs(client_manager, parsed_args):
                                      _format_str_if_need_treat_unset),
         'allowed_cidrs': ('allowed_cidrs', list),
         'tls_ciphers': ('tls_ciphers', str),
+        'tls_versions': ('tls_versions', list),
     }
 
     _attrs = vars(parsed_args)
diff --git a/octaviaclient/tests/unit/osc/v2/constants.py b/octaviaclient/tests/unit/osc/v2/constants.py
index c0bc6a2..d2b8e21 100644
--- a/octaviaclient/tests/unit/osc/v2/constants.py
+++ b/octaviaclient/tests/unit/osc/v2/constants.py
@@ -79,7 +79,8 @@ LISTENER_ATTRS = {
     'client_authentication': "OPTIONAL",
     'client_crl_container_ref': uuidutils.generate_uuid(dashed=True),
     "allowed_cidrs": ['192.0.2.0/24', '198.51.100.0/24'],
-    'tls_ciphers': "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256"
+    'tls_ciphers': "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256",
+    'tls_versions': ['TLSv1.1', 'TLSv1.2']
 }
 
 LOADBALANCER_ATTRS = {
diff --git a/octaviaclient/tests/unit/osc/v2/test_listener.py b/octaviaclient/tests/unit/osc/v2/test_listener.py
index bd0495b..decb503 100644
--- a/octaviaclient/tests/unit/osc/v2/test_listener.py
+++ b/octaviaclient/tests/unit/osc/v2/test_listener.py
@@ -192,7 +192,12 @@ class TestListenerCreate(TestListener):
                    '--client-crl-container-ref',
                    self._listener.client_crl_container_ref,
                    '--tls-ciphers',
-                   self._listener.tls_ciphers]
+                   self._listener.tls_ciphers,
+                   '--tls-version',
+                   self._listener.tls_versions[0],
+                   '--tls-version',
+                   self._listener.tls_versions[1]]
+
         verifylist = [
             ('loadbalancer', 'mock_lb_id'),
             ('name', self._listener.name),
@@ -207,7 +212,9 @@ class TestListenerCreate(TestListener):
             ('client_crl_container_ref',
              self._listener.client_crl_container_ref),
             ('tls_ciphers',
-             self._listener.tls_ciphers)
+             self._listener.tls_ciphers),
+            ('tls_versions',
+             self._listener.tls_versions)
         ]
 
         parsed_args = self.check_parser(self.cmd, arglist, verifylist)
@@ -289,7 +296,11 @@ class TestListenerSet(TestListener):
                    '--allowed-cidr',
                    self._listener.allowed_cidrs[1],
                    '--tls-ciphers',
-                   self._listener.tls_ciphers]
+                   self._listener.tls_ciphers,
+                   '--tls-version',
+                   self._listener.tls_versions[0],
+                   '--tls-version',
+                   self._listener.tls_versions[1]]
         verifylist = [
             ('listener', self._listener.id),
             ('name', 'new_name'),
@@ -303,7 +314,8 @@ class TestListenerSet(TestListener):
             ('client_crl_container_ref',
              self._listener.client_crl_container_ref),
             ('allowed_cidrs', self._listener.allowed_cidrs),
-            ('tls_ciphers', self._listener.tls_ciphers)
+            ('tls_ciphers', self._listener.tls_ciphers),
+            ('tls_versions', self._listener.tls_versions)
         ]
 
         parsed_args = self.check_parser(self.cmd, arglist, verifylist)
@@ -323,6 +335,7 @@ class TestListenerSet(TestListener):
                         self._listener.client_crl_container_ref,
                     'allowed_cidrs': self._listener.allowed_cidrs,
                     'tls_ciphers': self._listener.tls_ciphers,
+                    'tls_versions': self._listener.tls_versions,
                 }})
 
     @mock.patch('osc_lib.utils.wait_for_status')
diff --git a/releasenotes/notes/add-tls-version-support-for-listeners-4a6a661af5f9de9a.yaml b/releasenotes/notes/add-tls-version-support-for-listeners-4a6a661af5f9de9a.yaml
new file mode 100644
index 0000000..1143f49
--- /dev/null
+++ b/releasenotes/notes/add-tls-version-support-for-listeners-4a6a661af5f9de9a.yaml
@@ -0,0 +1,6 @@
+---
+features:
+  - |
+    Added a repeatable optional argument ``--tls-version`` for
+    setting one or more  TLS protocol versions when createing
+    or updating a listener.