Effective from 15 March 2019, Freshsales will be moving away from the TLS 1.0 version and will disable the encryption protocol across all its services. The depreciation will have effects on all Freshsales customers currently using TLS 1.0, and it is advised that you check if you're going to be affected. This solution article will walk you through steps on how you can check if this change affects your business.
Described below are the compatibilities across Desktop Browsers and Mobile Operating Systems.
Browser compatibility
Internet Explorer: Desktop versions of IE 8,9 and 10 are TLS compatible if you are running Windows 7 or higher, but not by default. Future versions of Internet Explorer are compatible by default. Achieve compatibility by following the guide here.
Mozilla Firefox: Versions 23 through 26 are compatible, but not by default. Use about: config to enable TLS 1.1 or TLS 1.2 by updating the security.tls.version.max config value to 2 for TLS 1.1, or 3 for TLS 1.2. All future versions of Mozilla Firefox are TLS 1.0+ compatible by default.
Google Chrome: All versions of Google Chrome above version 38 are compatible by default.
Safari: Desktop Safari versions 7 and higher for OS X 10.9 (Mavericks) and higher are, compatible with TLS 1.1 and higher, by default.
Verify your browser compatibility
To verify compatibility for TLS 1.1/TLS 1.2 for your browser, go to https://tlstest.freshsales.io/ and if you are able to view a web page shown below, then your browser is compatible with Freshsales. Internet Explorer users can achieve compatibility by following the guide here.
Mobile compatibility
Devices running Android OS versions lower than 4.1 won't be compatible with TLS versions higher than 1.0. Therefore, the Freshsales Android app will stop working on devices running these versions of the operating system. Users are advised to upgrade their operating systems to continue using the app.
Devices running Android 4.1 to 4.4 need to be on version 3.5 or higher of the Android app to continue using Freshsales. Users running Android versions 5.0 or higher will not face any issues and can continue using the existing version of the app installed on their device or upgrade to version 3.5 of the app.
The iOS app will continue to work seamlessly on compatible iOS versions (iOS 9 and above).
Once you have ensured that your Browser/OS will not be affected by the eventual deprecation of TLS, you can follow the steps below to run a compatibility test on your Integrations/API clients (if applicable).
API compatibility
Set up an API client in a test environment. This could be any software that you are using to integrate to Freshsales or any custom integration code that you have written.
In that test environment, change the API client's endpoint hostname from yourdomain.freshsales.com to tlstest.freshsales.io.
If you see a '200 OK' message, then this test passed. This response means that the underlying TLS connection was successful.
If you instead see an error message that involves TLS or https, then the test has failed. Your API client will require adjustments or upgrades. Please check with your client's documentation on how to upgrade to TLS 1.1 or TLS 1.2 support.
Example using cURL
This is how the output would look when connected from cURL.
Failure case
curl https://tlstest.freshsales.io/api --tlsv1.0
Output
curl: (35) LibreSSL SSL_connect: SSL_ERROR_SYSCALL in connection to tlstest.freshsales.io:443
Successful case
curl https://tlstest.freshsales.io/api --tlsv1.1
Output
OK
If you've got any additional queries, just drop a mail to support@freshsales.io