cancel
Showing results for 
Search instead for 
Did you mean: 

TLS 1.0 and TLS 1.1 coexisting in SAP PI

ADIDAS
Participant
0 Kudos
460

Hi,

We have got integration with few external partners using SSL. Currently all of them use TLS 1.0 but one of the partners ( Salesforce ) is disabling the TLS 1.0 and is going to support only 1.1 or higher. We have looked at the communication channel setting and do not see anything available to chose the SSL version, and if we make the changes in cryptolibrary, we think it will make it global and will disable all communication below TLS 1.1 thereby effecting our other integrations.

Any help anyone provide information on how they have achieved this kind of requirement in their landscape.

Regards,

Arunava

View Entire Topic
former_member186851
Active Contributor
0 Kudos


Hello Aruna,

I believe no additional settings are required.

Check the below link

ADIDAS
Participant
0 Kudos

Hi,

Sorry, I might have not been clear in my communication. I am looking at a way where Salesforce integration will use TLS 1.1 and greater and other integration will use TLS 1.0 ( not SSL v3 ).

Arunava

mate_moricz
Product and Topic Expert
Product and Topic Expert
0 Kudos

Hello Aruna,

If your partner requires TLS 1.1 or higher your partner's server will send back the requirement to PI which will connect to your partner via the required TLS version. Also please note that TLS 1.2 support is now official. Please check note:

2284059 - Update of SSL library within NW Java server

You don't have to change anything in your system. During the initialization of the connection the partner and the PI will negotiate which TLS version to use. In case with Salesforce it will use TLS 1.1 or higher (depends on the Salesforce requirement) and in other cases it will still continue to use TLS 1.0

Regards,
Mate