![]() However, your server still needs to be updated to use TLS 1.2 for SSL communication. The latest versions of Paid Memberships Pro have already been updated to use HTTP 1.1 in its API calls to PayPal. ![]() TLS 1.2 and HTTP/1.1 will become mandatory for communication with PayPal on June 17, 2016. ![]() This includes every connection your site makes with PayPal (onsite or offsite Membership Checkout and via IPN). PayPal is upgrading the protocols used to secure all external connections made to their system. ![]() I imagine for older web servers establishing a TLS 1.2 connection between PayPal and the server might fail and that's what they want you to check.Note: The contents of this post are highly technical and should be reviewed by your web hosting company and an experienced web developer. The HTTPS part in your form is the important bit. As you are using PayPal Basics they'll automatically upgrade their endpoints to TLS 1.2 for your code. If you can see from your webserver and it shows that the TLS check is ok then that should be all you need to do. Other from that if SSL Labs gives you a green light then your compliant. There are fixes out there but take time to plan it out. Word of warning however, if your web server is running older versions of Windows Server 2008 R2, SQL Server or other software be careful disabling older cipher suits (Like some of the TLS protocols) as they often rely upon those cipher suites for connectivity (including remote desktop). For ease of use however I'd stick with SSL Labs. If you don't want your site to be hit externally at the moment you can check your server using openssl on a Linux box it can give you some great diagnostic info. Otherwise if you want your server to disable ciphers and protocols that may not be secure then you can use a tool like IIS Crypto which is a streight forward way to do it. ![]() You can test TLS 1.2 is configured correctly using Qualsys SSL Labs You can use a few external tools to ensure you are PCI compliant in that regard but I believe it's just ensuring you've got TLS 1.2 and HTTP 1.1 enabled. It seems to be asking you if your Webserver configuration is in order. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |