Loading

Supported Cipher and TLS versions for Government Cloud

Fecha de publicación: Feb 11, 2025
Descripción

The inbound and outbound connections for Government Cloud are different than the standard commercial instance to meet specific security requirements. 

Solución

Outbound Connections

For outbound connections from Government Cloud instances, we support Transport Layer Security (TLS) v1.3 and TLS v1.2 using the following encryption options:

  1. TLS_AES_256_GCM_SHA384
  2. TLS_AES_128_GCM_SHA256
  3. TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
  4. TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
  5. TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
  6. TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  7. TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
  8. TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
  9. TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
  10. TLS_RSA_WITH_AES_256_GCM_SHA384
  11. TLS_RSA_WITH_AES_128_GCM_SHA256
  12. TLS_RSA_WITH_AES_256_CBC_SHA256
  13. TLS_RSA_WITH_AES_128_CBC_SHA256
  14. TLS_RSA_WITH_AES_256_CBC_SHA
  15. TLS_RSA_WITH_AES_128_CBC_SHA
 
 

Inbound Connections

When connecting to Government Cloud, some third-party integrations might produce an SSL version error, such as the one below that was produced by Informatica:

'Login failed: Error code: [SOAP-ENV:Client] Reason: [SSL_ERROR_SSL error:1408F10B:SSL routines:SSL3_GET_RECORD: wrong version number]'

Be sure that the integration is set to use an acceptable instance-specific or MyDomain URL as described here.

 

The Government Cloud infrastructure also requires TLS v1.2 or greater, depending on the cipher used.

For inbound connections to Government Cloud, we support TLS v1.3 and TLS v1.2 using the following encryption options:

Current Government Cloud ciphers that are supported and meet PCI requirements:

Cipher SuiteOpenSSL CipherSuite Name
TLS_AES_256_GCM_SHA384AEAD-AES256-GCM-SHA384 †
TLS_AES_128_GCM_SHA256AEAD-AES128-GCM-SHA256 †
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384ECDHE-RSA-AES256-GCM-SHA384 †
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256ECDHE-RSA-AES128-GCM-SHA256 †


 

Número del artículo de conocimiento

000387250

 
Cargando
Salesforce Help | Article