Scheduled Service Change: Reminder: Disable TLS 1.0 and 1.1 on Shibboleth IdP 06/06/2021
Event:
2021-06-06 13:00:00
Expected Duration:
2021-06-06 13:10:00
Status:
Closed
Brief Description:
On Sunday, June 6, 2021, at 9:00am, CIT will disable TLS 1.0 and 1.1 on Shibboleth Identity Provider (IdP) to meet InCommon's Baseline Expectations for Trust in Federation.
User Impact:
This maintenance should be transparent to end users. SAML Service Provider (SP) administrators should verify that the server is able to connect to IdP with TLS 1.2 or 1.3 if the SP is configured to automatically download Cornell Shibboleth Identity Provider's metadata from https://shibidp.cit.cornell.edu/idp/shibboleth.
Services Affected:
Authentication and Authorization
Identity Services
Subsites Affected:
Web Accessibility
Full Description:
On Sunday, June 6, 2021, at 9:00am, CIT will disable TLS 1.0 and 1.1 on Shibboleth Identity Provider (IdP) to meet InCommon's Baseline Expectations for Trust in Federation. SAML Service Provider (SP) administrators should verify that the server is able to connect to IdP with TLS 1.2 or 1.3 if the SP is configured to automatically download Cornell Shibboleth Identity Provider's metadata from https://shibidp.cit.cornell.edu/idp/shibboleth.
CIT TDX ID:
337166
Timeline of Changes
| Description | Current Status | Date | Time |
|---|---|---|---|
| On Sunday, June 6, 2021, at 9:00am, CIT will disable TLS 1.0 and 1.1 on Shibboleth Identity Provider (IdP) to meet InCommon's Baseline Expectations for Trust in Federation. SAML Service Provider (SP) administrators should verify that the server is able to connect to IdP with TLS 1.2 or 1.3 if the SP is configured to automatically download Cornell Shibboleth Identity Provider's metadata from https://shibidp.cit.cornell.edu/idp/shibboleth. | 2021-05-13 | 17:53:38 |