ACTION REQUIRED: TLS 1.1 or Later Required for Production Orgs, TLS 1.0 Being Disabled on March 4, 2017


Your org has been identified as having users or integrations still connecting to Salesforce using TLS 1.0 encryption protocol.

We want to remind you that Salesforce is requiring an upgrade to TLS 1.1 or higher by March 4, 2017 at 9:30 AM PDT (17:30 UTC). To ensure your users and integrations will be able to connect to Salesforce after the disablement, please ensure you upgrade to TLS 1.1 or later before March 4, 2017.

Why is Salesforce making this change?
As Trust is our #1 value, Salesforce is focused on helping our customers improve their security by using the latest security protocols. On March 4, 2017, Salesforce will require TLS 1.1 and later encryption protocol to maintain the highest security standards and promote the safety of customer data.

What is the impact of TLS 1.0 disablement?
The impact of the TLS 1.0 disablement will vary by org, and depends on the ways in which your users connect to the Salesforce service. Key areas of impact include:

User browser access – Browser incompatibility will prevent your internal and external users from accessing your Salesforce org, Communities and Sites.
Microsoft email integrations – Integrations such as Salesforce for Outlook, Exchange Sync and Salesforce App for Outlook won’t work if users don’t meet compatibility requirements.
API integrations – These integrations will cease to work if they are not compatible with TLS 1.1 or later.
Partner App/AppExchange Integrations – Partner App/AppExchange Integrations will cease to work if they are not compatible with TLS 1.1 or later.
Case submission and management – Admins using incompatible browsers will be unable to access the Salesforce Help & Training portal, impacting case submission and management.

What action do I need to take?
Review how your users and integrations connect to Salesforce and ensure those connections are ready to support TLS 1.1 and later well before March 4, 2017.

Many of our products and developer tools are already compatible with the latest versions of TLS. Customers should start early with their planning and testing to ensure a successful transition to supporting the latest TLS version prior to our disablement of TLS 1.0. Check out the TLS 1.0 Disablement Readiness Checklist (login required) for best practices on how to prepare for this change.

How can I get more information?
Review the Salesforce disabling TLS 1.0 article and post your questions to the Official: Salesforce Infrastructure Success Community group. Follow the discussions in the “BeTLSReady” and “TLS 1.0 Disablement” Chatter topics within the Success Community. You can also watch the Secure Connections: How TLS 1.0 disablement impacts your organization video to hear the experts talk about the disablement.

For additional questions, open a case with Support via the Help & Training portal.


Was this article helpful?
0 out of 0 found this helpful


Powered by Zendesk