JBoss Fuse 6.1 change: Salesforce disabling TLS 1.0

Salesforce is disabling the TLS version 1.0 encryption protocol in production organizations after March 4, 2017. See the knowledge article on the Salesforce web site for details.

What is TLS? Transport Layer Security (TLS) ensures that a connection to a remote endpoint is communicating to the intended destination through encryption and endpoint identity verification. Salesforce web and API connections, along with email delivery, use TLS as a key security component. The disablement of TLS 1.0 prevents it from being used to access the Salesforce service within inbound and outbound connections.

What versions of JBoss Fuse are affected? Fuse 6.1.x installations running Oracle Java 6 with updates prior to 111 are affected. Installations of Fuse 6.1 using Java 7 are not impacted.

What to do: If you are running Fuse 6.1.x with Oracle Java 6 and updates prior to 111, then you must set the sslContextParameters.secureSocketProtocol value to TLSv1.1 for the Salesforce component. If you subscribe to Oracle support, install the Java 6 111 update to enable TLS version 1.1, or the 121 update to enable TLS version 1.2 (preferred).