Deprecation of TLS 1.0 and TLS 1.1

To maintain a high-security level, OpenSRS is deprecating the use of the Transport Layer Security (TLS) protocol version 1.0 and TLS 1.1 system-wide.  TLS 1.0 is a security protocol that was first defined in 1999 for establishing encryption channels over computer networks.

Who this change affects

This change affects all resellers connecting to OpenSRS via port 443 and port 55443, currently using TLS 1.0 or 1.1 for their encryption. 

Why these changes are taking place

To maintain the security level that resellers expect from our service, we will no longer permit OpenSRS connections via TLS 1.0 or 1.1. We will only accept TLS 1.2 or above.

When changes are being implemented

To help resellers prepare for changes they may need to make, we are using separate dates for the production and test environments. 

Environment Server address Date
Test Environment

Thursday, Feb 18, 2021

Production environment Tuesday, Mar 16, 2021

Ensuring resellers can meet the new requirements

Please ensure that the web browser being used to connect to the OpenSRS control panel is an updated version of a supported browser.

Resellers will need to work with their developers to ensure their API connections use the acceptable versions of TLS. Our domains API guide provides troubleshooting steps to verify you can connect to our server. Verification of a valid connection to the API host/port will return the SSL-session protocol/version.

Back to top

Have more questions? Submit a request


Article is closed for comments.