TLS version issue

Owned by Vu Nguyen (Deactivated)
Last updated: Oct 13, 2021

Problem

In an instance you get an error while doing Connection test via T.Code /IQX/OL_ENDPOINT with error message relating to “Communication Error”, it may due to the TLS version in SAP Environment is using as version 1.0

Furthermore, you can find a message complaining about TLS version in SMICM log as below screenshot:

Solution

Enable TLS v1.2 support:

  1. Go to transaction RZ10

  2. Open “DEFAULT” profile, select “Extended maintenance” and click “change

    1.  

  3. Add these two parameters/source SAP Note 510007

    1. ssl/ciphersuites = 135:PFS:HIGH::EC_P256:EC_HIGH

    2. ssl/client_ciphersuites = 150:PFS:HIGH::EC_P256:EC_HIGH

    3. icm/HTTPS/client_sni_enabled = TRUE

      1.  

  4. Click “Copy” and “Save”.

  5. Restart the server