It is possible to switch connection between TLSv1.1 and TLSv1.2 while doing salesforce connection
Article ID: KB0084046
Updated On:
| Products | Versions |
|---|---|
| TIBCO ActiveMatrix BusinessWorks Plug-in for Salesforce.com | 2.4.1 |
Description
The Salesforce server side, by default, currently allows TLSv1.1 and TLSv1.2 connections only.
Upon installing Salesforce Plug-in version 2.4.1 on Tibco ActiveMatrix BusinessWorks 5.13, we can do successful Salesforce connections with TLSv1.2 because Tibco ActiveMatrix BusinessWorks 5.13 uses Tibco JRE version 1.8.0 and Java version 8, which allows TLSv1.1 and TLSv1.2 connections by default.
But, on installing Salesforce Plug-in version 2.4.1 on Tibco ActiveMatrix BusinessWorks 5.11 or Tibco ActiveMatrix BusinessWorks 5.12, we can not do successful Salesforce connections as Tibco ActiveMatrix BusinessWorks 5.11 and Tibco ActiveMatrix BusinessWorks 5.12 uses Tibco JRE version 1.7.0 and Java version 7. By default, this does not allow TLSv1.1 and TLSv1.2 connections.
We must use Salesforce Plug-in version 2.4.1 hotfix 4 when installing Salesforce Plug-in version 2.4.1 on Tibco ActiveMatrix BusinessWorks 5.11 and Tibco ActiveMatrix BusinessWorks 5.12. This solves the following problem: "Connection failure to server since Salesforce upgrading TLS version to 1.1/1.2"
If using Salesforce plug-in version 2.4.1 hotfix 4 on BW 5.11 and BW 5.12 (which are using Tibco JRE 1.7), the hotfix will enable Tibco JRE 1.7 to use TLSv1.1/TLSv1.2 in order to communicate with the Salesforce server.
By default, Salesforce plug-in version 2.4.1 hotfix 4 on BW 5.11 and BW 5.12 will enable TLSv1.2 connections while connecting to the Salesforce server.
Upon installing Salesforce Plug-in version 2.4.1 on Tibco ActiveMatrix BusinessWorks 5.13, we can do successful Salesforce connections with TLSv1.2 because Tibco ActiveMatrix BusinessWorks 5.13 uses Tibco JRE version 1.8.0 and Java version 8, which allows TLSv1.1 and TLSv1.2 connections by default.
But, on installing Salesforce Plug-in version 2.4.1 on Tibco ActiveMatrix BusinessWorks 5.11 or Tibco ActiveMatrix BusinessWorks 5.12, we can not do successful Salesforce connections as Tibco ActiveMatrix BusinessWorks 5.11 and Tibco ActiveMatrix BusinessWorks 5.12 uses Tibco JRE version 1.7.0 and Java version 7. By default, this does not allow TLSv1.1 and TLSv1.2 connections.
We must use Salesforce Plug-in version 2.4.1 hotfix 4 when installing Salesforce Plug-in version 2.4.1 on Tibco ActiveMatrix BusinessWorks 5.11 and Tibco ActiveMatrix BusinessWorks 5.12. This solves the following problem: "Connection failure to server since Salesforce upgrading TLS version to 1.1/1.2"
If using Salesforce plug-in version 2.4.1 hotfix 4 on BW 5.11 and BW 5.12 (which are using Tibco JRE 1.7), the hotfix will enable Tibco JRE 1.7 to use TLSv1.1/TLSv1.2 in order to communicate with the Salesforce server.
By default, Salesforce plug-in version 2.4.1 hotfix 4 on BW 5.11 and BW 5.12 will enable TLSv1.2 connections while connecting to the Salesforce server.
Issue/Introduction
It is possible to switch connections between TLSv1.1 and TLSv1.2 while doing a Salesforce connection.
Environment
Tibco ActiveMatrix BusinessWorks 5.11, Tibco ActiveMatrix BusinessWorks 5.12, Tibco ActiveMatrix BusinessWorks 5.13
Resolution
The following are the steps to switch the connection between TLSv1.1 and TLSv1.2.
If you want to disable TLSv1.2, Please add "jdk.tls.disabledAlgorithms=TLSv1.2" property inside java.security file present under following location:
<BW_HOME>\tibcojre64\<TIBCO_JRE_version>\lib\security\java.security
Now a connection with the Salesforce server will be established with TLSv1.1
If you want to disable TLSv1.2, Please add "jdk.tls.disabledAlgorithms=TLSv1.2" property inside java.security file present under following location:
<BW_HOME>\tibcojre64\<TIBCO_JRE_version>\lib\security\java.security
Now a connection with the Salesforce server will be established with TLSv1.1
Feedback
Yes
No
Powered by
