ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

cloudProxy TLS 1.3 support

book

Article ID: 241383

calendar_today

Updated On:

Products

CA Application Performance Management SaaS

Issue/Introduction

We have installed cloudProxy to talk to the DX SaaS instance, and noticed that in the default secure connection string it has :

# apm.server.secureProtocols: SSLv2Hello,TLSv1,TLSv1.1,TLSv1.2

We have removed the earlier versions and just left TLSv1.2 as below

apm.server.secureProtocols: TLSv1.2

Does it also support TLS 1.3? Can we just add ",TLSv1.3" to this protocol?

Environment

Release : SAAS

Component : CLOUD PROXY EXTENSION

Resolution

The Support for TLS v1.3 is already implemented on the CloudProxy side.

But, currently, it is not possible to enforce TLS v1.3 usage in communication between CloudProxy and DX SaaS.

Thus, presently full functionality is not there.

There is already an enhancement request opened to add this full functionality.

The current ETA is that it will be released sometime during the summer 2022.