Skip to main content

Notification of change for enhanced security

Starting on June 24, 2017, IdenTrust required the use of TLS 1.1 or higher, in order to communicate with its more secure services such as digital certificate registration and retrieval pages. This requirement is to align with the industry's best practices for security and data integrity.

Why is this happening?

The move to use TLS 1.1 and later encryption protocol is an effort to maintain the highest security standards and promote the safety of data. The objective is to remove vulnerable encryption methods before they may be compromised, so your sensitive information remains secure. 

Browsers that support TLS 1.1 and later:

Configure your browser to support TLS 1.1 and later

Versions of Internet Explorer

  • IE 7 and lower do not support TLS 1.1 or later. It is required to upgrade your browser.
    • Suggestion: Upgrade to a supported version.
  • IE 8 thru 10 support TLS 1.1 and later, but are disabled by default.
    • Suggestion: Follow the instructions below to update the configuration. 
  • IE 11 supports TLS 1.1 and later and is enabled by default.

Internet Explorer Instructions:

  1. Open Internet Explorer
  2. From the menu bar, click Tools > Internet Options > Advanced tab
  3. Scroll down to the Security category, manually check the option box for Use TLS 1.1 and Use TLS 1.2
    Internet Explorer TLS Options
  4. Click OK
  5. Close your browser and restart Internet Explorer.

Versions of Google Chrome

  • Google Chrome version 30 and lower do not support TLS 1.1 or later.
    • Suggestion: Upgrade to a supported version.
  •  Google Chrome version 31 and above support TLS 1.1 and later automatically.

Versions of Mozilla Firefox

  • Mozilla Firefox version 23 or lower do not support TLS 1.1 or/and 1.2. You must upgrade your browser. See the link above to the Firefox upgrade site. 
  • In Mozilla Firefox versions 24 through 26, TLS version 1.1 and 1.2 are disabled by default. You can change the configuration as explained below. 
  • In Mozilla Firefox versions 27 (released February 2014) and higher, TLS 1.1 and TLS 1.2 versions are enabled by default. If your current configuration has TLS 1.1 and 1.2 disabled, you may change the configuration as shown below in figure 3. 

Mozilla Firefox Instructions

  1. Open Mozilla Firefox
  2. In the address bar type about config and press Enter
    • Click on I accept the risk! if notification appears
  3. In the Search field, enter tls. Find and double-click entry for security.tls.version.max
  4. Set the integer value to 3 to force protocol of TLS 1.3
    Firefox About TLS Config
  5. Click OK
  6. Close your browser and restart Mozilla Firefox

Apple Safari Information

There are no options for enabling SSL protocols.

  • For Mac: If you are using Safari version 7 or greater, TLS 1.1 and TLS 1.2 are automatically enabled.
  • For Windows: Apple no longer supports Safari on Windows. Safari 5.1.7 is last made version and is now outdated