SSL/TLS Support

SSL/TLS Support

This is for:

Developer System Administrator

When establishing an HTTPS connection with a system, it may use different protocols. This article describes which protocols are supported by the various releases of Coveo for Sitecore, Coveo Platform, and Coveo Enterprise Search 7.

Support in Coveo for Sitecore

* The protocol is supported by installing an additional Sitecore package. See the next section for instructions.

Installing the Enable_TLS_1_2.zip package

The Enable_TLS_1_2.zip package allows Coveo for Sitecore to use the TLS 1.1 and/or TLS 1.2 protocols when establishing an HTTPS connection.

1. Download the package: Enable_TLS_1_2.zip.
2. Open Sitecore’s Installation Wizard (Sitecore Menu > Developers Tools > Installation Wizard).
3. Upload and install the package.

The package will deploy two files:

• App_Config\Include\EnableTls12.config: This file registers a processor into the initialize Sitecore pipeline that then allows the TLS 1.1 and/or 1.2 to be used by the application.
• bin\EnableTls12.dll: This assembly contains the processor.

The EnableTls12.config file can be modified to allow only TLS 1.1 or TLS 1.2. Note that the processor can either enable a protocol or leave the default; it won’t disable any protocol.

<configuration xmlns:patch="http://www.sitecore.net/xmlconfig/">
  <sitecore>
    <pipelines>
      <initialize>
        <processor type="EnableTls12.EnableTls12Processor, EnableTls12">
          <EnableTls1_1>true</enableTls1_1>
          <EnableTls1_2>true</enableTls1_2>
        </processor>
      </initialize>
    </pipelines>
  </sitecore>
</configuration>

For example, to enable only the TLS 1.2 protocol, set the elements as follow:

<EnableTls1_1>false</enableTls1_1>
<EnableTls1_2>true</enableTls1_2>

Support in Coveo Platform

Support in Coveo Enterprise Search 7 (CES 7)