UPDATE #2: RSA Via L&G Integrations with Salesforce Using TLS 1.0 Encryption Protocol

Document created by RSA Link Team Employee on Jun 3, 2016
Version 1Show Document
  • View in full screen mode

We previously notified you of the potential impact to RSA Via Lifecycle and Governance  customers due to the Salesforce decision to disable the use of the TLS 1.0 encryption protocol for communication with their environments.  Customers that integrate with Salesforce using the product connector and collector capabilities will need to upgrade to an appropriate patch level in order to ensure that their environments are not impacted.


With the availability of the IMG 6.9.1 Patch 14 release, software updates are now available for Via Lifecycle and Governance 7.0 and Identity Management & Governance 6.9.1 deployments.


Versions Impacted:


Starting in June 2016, Salesforce will begin disabling the TLS 1.0 encryption protocol using a phased approach.  The initial phase in June 2016 is to disable use of TLS 1.0 communication to and from Salesforce sandbox instances.  This same change will be phased into Salesforce production instances in early 2017.  After Salesforce disables TLS 1.0, any inbound connections to or outbound connections from Salesforce will need to use the TLS 1.1 or TLS 1.2 encryption protocol.  This was communicated by Salesforce via the article at the following link:


This change to the Salesforce environments will impact any RSA Via Lifecycle and Governance customers using the Salesforce Connector & Collector capabilities available in the product with the AFX or RSA Via Lifecycle functionality.


RSA completed an investigation and verification of the necessary product changes needed to facilitate customer’s use of TLS 1.1/1.2 to integrate with Salesforce via the connectors and collectors.  The product changes are incorporated into available patch releases for versions RSA Via L&G 7.0.0 and IMG 6.9.1.  Customers currently on version IMG 6.8.1 and using the Salesforce connector and collector capabilities will need to upgrade to either RSA Via L&G 7.0.0 or IMG 6.9.1.


The following minimum patch releases include the product changes necessary to use TLS 1.1/1.2:

     --  RSA Via L&G 7.0.0 Patch 02 -- TLS 1.1 and TLS 1.2 Support

     --  RSA IMG 6.9.1 Patch 14  (with supplied JDK update) -- TLS 1.1 Support Only

Customers managing their Salesforce application for their RSA Via Lifecycle and Governance needs can reach out to customer support at support@rsa.com  for any follow up questions.


For additional documentation, downloads, and more, visit the RSA Identity Governance & Lifecycle on RSA Link


EOPS Policy:

RSA has a defined End of Primary Support policy associated with all major versions. Please refer to the link below for additional details.
Product Version Life Cycle