TLS 1.0 and 1.1 support is sunsetting on March 8th, 2021
Announced: December 7, 2020
Live: March 8, 2021
To improve platform security and performance we are dropping support for TLS 1.0 and 1.1 in favor of supporting the newer versions of TLS. This will affect API integrations.
The HubSpot app itself will no longer support TLS 1.0 and TLS 1.1. all of our officially supported web browsers support at least TLS 1.2. For coverage on other browsers, see Can I Use. The most popular browsers have had support since 2015 so we don't anticipate issues.
In addition to affecting the HubSpot app, this change will also affect all of our public APIs. After this change, any integrations connecting using TLS 1.0 or 1.1 will no longer be able to connect when making API requests. Developers should review their integrations and ensure they are using at least TLS version 1.2.
This change does not affect HubSpot CMS website pages. Websites hosted on the CMS can choose the TLS version to support.
Update (March 11): This change also redirects all HTTP requests to HTTPS, enforcing the documented requirement for HTTPS. Using HTTPS for API calls is an industry standard security practice for keeping your data transmissions secure.
When is it happening
This change is going into effect March 8th, 2021. We suggest reviewing integrations you currently have set up to ensure they are using the more secure and recent version of TLS to avoid any issues.
If you have any questions or comments, let us know in the developer forums.