Supported cipher suites in outgoing calls
This article lists the cipher suites that are supported on external APIs that are called from Business Central online.
Overview
For Business Central to connect to an external API, the API's web site must use an HTTPS certificate. In Business Central, the certificate must be added to HttpClient instance that will send HTTP requests to and receive HTTP responses from external API. The certificate must use one of supported cipher suites; otherwise, the outgoing web service call will fail with security exception.
A cipher suite is used to help secure web service calls made from the Business Central app to an external URL. A cipher suite is a set of algorithms, which typically include: key exchange, authentication, encryption, and message authentication code (MAC).
Supported cipher suites in HTTPS certificate
Suite | Protocol | Key exchange algorithm | Authentication algorithm | Encryption algorithm (cipher_keysize_type) | MAC algorithm (Hash) |
---|---|---|---|---|---|
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 | TLS | ECDHE | ECDSA | AES_256_GCM | SHA384 |
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 | TLS | ECDHE | ECDSA | AES_128_GCM | SHA256 |
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 | TLS | ECDHE | RSA | AES_256_GCM | SHA384 |
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 | TLS | ECDHE | RSA | AES_128_GCM | SHA256 |
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 | TLS | ECDHE | ECDSA | AES_256_CBC | SHA384 |
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 | TLS | ECDHE | ECDSA | AES_128_CBC | SHA256 |
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 | TLS | ECDHE | RSA | AES_256_CBC | SHA384 |
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 | TLS | ECDHE | RSA | AES_128_CBC | SHA256 |
See Also
Call external services with the HttpClient data type
HttpClient Data Type
Programming in AL
Directives in AL
AL Essential Methods
피드백
https://aka.ms/ContentUserFeedback
출시 예정: 2024년 내내 콘텐츠에 대한 피드백 메커니즘으로 GitHub 문제를 단계적으로 폐지하고 이를 새로운 피드백 시스템으로 바꿀 예정입니다. 자세한 내용은 다음을 참조하세요.다음에 대한 사용자 의견 제출 및 보기