SAP Knowledge Base Article - Public

2790332 - SSL weak cipher suites supported - Security concern?


When checking on SSL cipher suites, customer observes that weak SSL cipher are supported and that raises security concern.


SAP SuccessFactors HXM Suite


The “weak” ciphers are only in place to support customers who still require it for internal dependency reasons.


Our URLs as of May 2019 received a A+ ratings from SSL Labs – this is the industry standard.  Further, there are no known vulnerabilities related to TLS 1.2.

It is entirely within the customer’s own control (configured on their own client web browsers, integration clients, client libraries, etc) to only use the strongest encryption supported, which mitigates any impact of the weak ciphers available.

This has been updated on August 2021 as per the handy KBA 3049496 - TLS encryption protocol weak ciphers disablement for SAP SuccessFactors

See Also

3049496 -  TLS encryption protocol weak ciphers disablement for SAP SuccessFactors


SSL security, open SSL, ssl, sf, sfsf , sf sf, SuccessFactors, SuccessFactor, Success Factor, bizx, ciphers, cipher, tls, tls1.2, SSL v2 , KBA , LOD-SF-PLT-PSI , Product Security Inquiries , How To


SAP SuccessFactors HCM suite all versions