Is it possible for our Production tenant endpoint to be updated to support secure renegotiation?

konrad.sopala · June 16, 2023, 7:58am

Problem statement

We are experiencing an issue using the Production endpoint - example-prod.au.auth0.com - as our deployment pipeline does not allow UnsafeLegacyServerConnect due to security reasons.

Can you please check if the Production endpoint example-prod.au.auth0.com can be updated to support secure renegotiation?

Cause

'UnsafeLegacyServerConnect' is a default option that relates to Open SSL:

https://www.openssl.org/docs/man1.1.1/man3/SSL_CONF_cmd.html

"UnsafeLegacyServerConnect: permits the use of unsafe legacy renegotiation for OpenSSL clients only. Equivalent to SSL_OP_LEGACY_SERVER_CONNECT. Set by default."

Solution

It’s a case by case basis so contact our @support group that will be able to talk with Engineering, investigate that and recommend the approach.

Topic		Replies	Views
Action Required: Upgrade to TLS 1.2 or later Help tls	35	8854	March 31, 2021
Api endpoint certificate expired AU tenant -- Urgent Help api	3	3395	April 16, 2019
Was there any big change put in production this weekend? Regarding TLS Help general-question	4	3445	April 5, 2021
Need immediate help on Action required: Upgrade TLSv1.2 or later Help tls	2	4001	February 16, 2021
Auth0 is Down for all our Environments and all our Users are reporting an outage! Help login-experience , login-prompt-new-experience	18	4205	December 9, 2022

Is it possible for our Production tenant endpoint to be updated to support secure renegotiation?

Problem statement

Cause

Solution

Related topics