cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Does SAP IQ 16.1 Support TLS 1,2 , how can we restrict server to accept only TLS 1.2

shery_vijayan
Explorer

on ‎03-05-2018 7:51 AM

0 Kudos

Does SAP IQ 16.1 Support TLS 1,2 , how can we restrict server to accept only TLS 1.2

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (4)

Answers (4)

philippefbertrand
Discoverer
‎11-06-2020 9:48 PM

IQ 16.1 SP04 PL01 has min_tls_version parameter. You can use min_tls_version=<ver> in the -ec or -xs switches or as part of the ENCRYPTION=tls connection parameter. For example, to allow TLSv1.2 connections over HTTPS, use “-xs https(min_tls_version=1.2;<other parameters>)”. The dot is optional so you can use 10, 11, and 12.
It was introduced early 2019 in all actively supported branches.

Show replies
Show replies
former_member676063
Explorer
‎01-26-2021 10:00 AM
0 Kudos

Any documentation around this? cannot find details for this. Trying to restrict all incoming TLS connections to specific version or above.

philippefbertrand
Discoverer
‎01-26-2021 7:15 PM

Sorry, it looks like it was missed. I have alerted documentation that the docs need to be updated.

Example: -xs HTTPS(FIPS=N;PORT=82;IDENTITY=ecserver.id;IDENTITY_PASSWORD=test;MIN_TLS_VERSION=1.2)

shery_vijayan
Explorer
‎01-27-2021 7:53 AM
0 Kudos

Thanks Philippe ..

Will try it out on a test instance ..

The documentation appears to me missing though ..

checked -xs / -ec part of the documentation ..

ill be happy to give a try ..

Thanks,

Show replies
Show replies
Sreejith1
Contributor
‎05-07-2021 3:01 AM
0 Kudos

Hi shery_vijayan,

Whether above solution have worked? When we tried, it was not working.

Regards,

Sreejith

shery_vijayan
Explorer
‎03-06-2018 6:37 AM
0 Kudos

Thanks Tayeb for the feedback,

We managed to build IQ 16.1 with TLS , Now we need to know ,

Is there any way we can restrict the session to use TLS 1.2 ,

is there any option to insist on 1.2 either from the server side or from the client side ..

How can we confirm the sessions are using TLS 1.2 ...

Any help is highly appreciated ..

Thanks ,

Show replies
Show replies
philippefbertrand
Discoverer
‎01-26-2021 7:29 PM

IQ 16.1 SP04 PL01 has min_tls_version parameter. You can use min_tls_version=<ver> in the -ec or -xs switches or as part of the ENCRYPTION=tls connection parameter. For example, to allow TLSv1.2 connections over HTTPS, use “-xs https(min_tls_version=1.2;<other parameters>)”. The dot is optional so you can use 10, 11, and 12.
It was introduced early 2019 in all actively supported branches.

tayeb_hadjou
Advisor
Advisor
‎03-05-2018 9:04 AM
0 Kudos

TLS 1.2 is supported with IQ 16.1:

2518936 - Upgrade questions - SAP IQ 16

2332735 - SQL Anywhere TLS 1.2 support

Setting Up TLS Connections for the Multiplex

SQL Anywere Transport Layer Security

Show replies
Show replies
Ask a Question