function readOnly(count){ }
Sign Up ›
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
Learn More

Browse by Topic
ShowAll Questionssorted byDate Posted
+ Start a Discussion
Ankit Singh 6Ankit Singh 6 

How to Enable TLS 1.0 encription for API integration

Salesforce is going to disable SSL 3.0 encription on 7th November for all the sandbox instances and later for production instances. In sandbox environment, my .Net client application using OAuth 2.0 Web Server flow and salesforce APIs to communicate with salesforce.  How could I verify that my API integration is using SSL 3.0 encription and how could I change it to TLS 1.0?

Please let me know as it is very critical.
Best Answer chosen by Ankit Singh 6
ShashankShashank (Salesforce Developers) 
This might help: http://stackoverflow.com/questions/26389899/how-do-i-disable-ssl-fallback-and-use-only-tls-for-outbound-connections-in-net

All Answers

ShashankShashank (Salesforce Developers) 
This might help: http://stackoverflow.com/questions/26389899/how-do-i-disable-ssl-fallback-and-use-only-tls-for-outbound-connections-in-net
This was selected as the best answer
Ankit Singh 6Ankit Singh 6
Thanks for your help.
eriklangeriklang
What if we are hosting a web service that is called from Salesforce?  What are the steps to enable TLS for that?  Do we need to change a setting in IIS for the web service - if so, what setting?
ShashankShashank (Salesforce Developers) 
For salesforce outbound integrations, you should ensure that SSLv3 is disabled on your web service. However, it is almost impossible for these kind of integrations to be affected by the Poodle bug because of the characteristics of the poodle bug.

You may find this useful: https://www.openssl.org/~bodo/ssl-poodle.pdf