Disabling of TLS Version 1.0 for inbound and outbound connections to AccountsIQ from 28 February 2018

What’s TLS 1.0 and why are we disabling it?

TLS stands for Transport Layer Security and it’s a communications protocol used to ensure there is an encrypted connection between two communicating applications such as your internet browser and/or your integrated application and AccountsIQ.

When an application such as your Internet Browser (Internet Explorer, Chrome, Firefox or Safari) or an integrated application connects with AccountsIQ, it can be configured to use a specific TLS version which determines the encryption ciphers used to establish the connection’s security.

TLS Version 1.0 is an older version of this protocol and has been superseded by newer versions 1.1, 1.2 and the soon to come, 1.3.

Security best practice recommends that support for TLS 1.0 be discontinued.

AccountsIQ plans on discontinuing support for TLS 1.0 at the edge of our hosting networks from 28 Feb 2018 and afterwards any traffic communicating using TLS 1.0 will be blocked.  There will be no downtime during this transition period, but please ensure that you take action (see below) in advance of this to ensure there is no disruption to your use of the system.

Check if your browser is using TLS 1.0 to communicate with our host servers

Checking if your browser uses TLS 1.0 is easy and takes less than a minute.

For each of the most widely used browsers follow these steps to check…

Internet Explorer 11.0

Choose ‘Tools’>>’Internet Options’>>’Advanced’ tab and then scroll to the bottom.  Then remove the tick from here but leaving TLS 1.1 and 1.2 checked:

Google Chrome

Firefox:

  1. In the address bar, type “about:config” and hit enter.
  2. In the “Search” field, enter “tls”. Find and double-click the entry for “tls.version.min”.
  3. Set the integer value to “2” to force a minimum protocol of TLS 1.1 (entering “3” would force TLS 1.2).
  4. This configuration will now show the new value and will take effect immediately (don’t forget to clear your cache).

If your local IT Policy prevents you from making these changes (e.g. if you don’t have admin rights on your computer), please contact your IT Support and provide this information to them so they can make the change for you.

Ask Questions

If you have any questions please let us know at development@accountsiq.com and we’ll be happy to help you.

System Integrators IMPORTANT!

If your company has built an existing custom integration with AccountsIQ, it’s important that you pass this message onto the technical team responsible as they may need to make a change on the installed version of their integration package, if it only communicates over TLS 1.0 right now and does not use the later protocol versions.

Again, if you or your technical team have any questions, please let us know at development@accountsiq.com

Take Action Now!

If you have confirmed that your browser communicates using TLS 1.0 only please make the necessary changes as outlined above.

Similarly, if you have an integrated application sending or receiving data from AccountsIQ, please ensure that this message is forwarded to the technical team responsible so that this can be checked.

If you have confirmed that your organization supports TLS 1.1 and above, we’d like to thank you for your efforts and let you know that we are here to help if needed.