000036448 - How to enable TLS 1.2 for the upcoming Authentify change in RSA Adaptive Authentication (On Premise)

Document created by RSA Customer Support Employee on Jun 23, 2018
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000036448
Applies ToRSA Product Set: Adaptive Authentication (OnPrem)
RSA Version/Condition: 7.x
IssueAuthentify (service provider of out-of-band phone and out-of-band SMS authentications) is moving all Internet exposed connections including GUIs, API Services and direct socket connections to TLS v1.2 to meet both security and compliance requirements.
Early Warning will no longer support specific Cipher Suites or any TLS connection below TLS v1.2 after June 30, 2018. See the Final Notice announcement from Early Warning on RSA Link for more information.
All non-compliant traffic will be terminated as of the deadline. No real-time inquiries will be processed after this date.
ResolutionPlease refer to the advisory at https://community.rsa.com/docs/DOC-88367 for instructions.

Customer action is required for some versions of Oracle Java, as explained in the table below.
Java VersionAction Required
Java 8No action required.
Java 7Install the JAVA 7 Update 131 Build 31, which enables TLS v1.2 by default.  Customers who use previous JAVA 7 updates must install the upcoming release of rsa-acsp-common-xx.jar to enable TLS 1.2 support.
Java 6Install the JAVA 6 Update 121 or later, which supports TLS 1.2.  In addition to the JAVA update, you must install the upcoming release of rsa-acsp-common-xx.jar to enable TLS 1.2 support.  To receive the upcoming release of rsa-acsp-common-xx.jar contact RSA Customer Support.