System Status
System Status
Welcome to Ping Identity's system status site.System Uptime
System Uptime
System uptime in the past 90 days.Past Incidents Past Incidents
Welcome to Ping Identity's system status site.
Please subscribe to updates to get up to the minute alert notifications on any service interuptions.
Cryptographic update to PingOne Endpoints
Scheduled Maintenance
Report for Ping Identity
Completed
This change was rolled back due to a customer request.
In progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
Scheduled
From the 21st to the 23rd of February 2021 we will undertake work on our PingOne/PingID endpoints to tighten our security posture.
Change details:
Based on cryptographic research it is no longer considered safe to decrypt data with the Cipher-Block-Chaining (CBC) mode of symmetric encryption algorithms. CBC cipher modes in context of the TLS 1.2 protocol are now obsolete and need to be sunset to protect our customers.
The ciphers that will be removed from operation are:
• TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
• TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
• TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
• TLS_DHE_RSA_WITH_AES_256_CBC_SHA
• TLS_RSA_WITH_3DES_EDE_CBC_SHA
Based on extensive connectivity testing, there is no expected connectivity impact removing CBC cipher modes in TLS 1.2 for all supported clients and many unsupported mobile, server and desktop operating systems. CBC cipher modes are not supported in TLS 1.3 and there is no change for this protocol.
• There is no action required from our customers.
• The changes will be progressively rolled through the services listed.
• Updates to each region will be targeted to outside of each regions core hours.
If you have any questions, or find your service is unexpectedly impacted during the change window, please raise a case via the support portal at https://support.pingidentity.com
Change details:
Based on cryptographic research it is no longer considered safe to decrypt data with the Cipher-Block-Chaining (CBC) mode of symmetric encryption algorithms. CBC cipher modes in context of the TLS 1.2 protocol are now obsolete and need to be sunset to protect our customers.
The ciphers that will be removed from operation are:
• TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
• TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
• TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
• TLS_DHE_RSA_WITH_AES_256_CBC_SHA
• TLS_RSA_WITH_3DES_EDE_CBC_SHA
Based on extensive connectivity testing, there is no expected connectivity impact removing CBC cipher modes in TLS 1.2 for all supported clients and many unsupported mobile, server and desktop operating systems. CBC cipher modes are not supported in TLS 1.3 and there is no change for this protocol.
• There is no action required from our customers.
• The changes will be progressively rolled through the services listed.
• Updates to each region will be targeted to outside of each regions core hours.
If you have any questions, or find your service is unexpectedly impacted during the change window, please raise a case via the support portal at https://support.pingidentity.com
This scheduled maintenance affected: PingOne for Enterprise - Global (Administration API, AD Connect & Routing Service, Administration Portal, Logging and Subscription Service, OAuth Configuration Service, Single Sign-on), PingOne for Enterprise - United States (.com services) (Directory API, Directory Login, Office365 Service, PingOne Dock, SCIM Provisioning), PingOne for Enterprise - Europe (.eu services) (Directory API, Directory Login, Office365 Service, PingOne Dock, SCIM Provisioning), PingOne for Enterprise - Australia (.com.au services) (Directory API, Directory Login, Office365 Service, PingOne Dock, SCIM Provisioning), PingID - Europe (.eu services) (PingID Authenticator, PingID Server), PingID - Australia (.com.au services) (PingID Authenticator, PingID Server), and PingID - United States (.com services) (PingID Authenticator, PingID Server).