Dun & Bradstreet is making security enhancements to its Direct+ application in November. In preparation for this activity, we would like to share important information and actions that are required of your business to ensure a continuous user experience. First, please be sure that your business successfully meets the following technical and security requirements, including:
In rare cases, customers who use a Trust Store that support only one active certificate per URL connection (one to one mapping) should utilize the new certificate only after the cutover.
To avoid potential disruption, the applications must be compatible with the following versions:
We are providing a test environment using the Oracle, Java and .NET versions listed above, as well the accepted list of ciphers. If you currently have a test environment available, you can connect to Dun & Bradstreet's pre-production environment supporting the new protocols to test changes. Our Test environment has not changed since August 04, 2020 so any testing done since then is valid. Connectivity tests may be conducted using https://tst.plus.dnb.com/v2/token to confirm compatibility. Please open a ticket with Customer Support at https://support.dnb.com/Support_Home or contact 1-866-465-3829 to confirm credentials to test in this environment.
|Open SSL||IANA /RFC5289|
Following are additional details for updating the accepted Cipher Suite beginning 12:00 a.m. ET, Tuesday, October 27, 2020. As part of the change, we are extending support for ECDSA certificates as well as RSA certificates (dual stack).
Updates to the server certificate if you are storing it in your trust store.
If you are storing the Direct+ server certificate within you server store, you will need to replace it with a new server certificate. If this applies to you, please open a ticket with Customer Support to acquire the new certificate after October 1.
If you have any questions or concerns, please submit an inquiry at https://support.dnb.com/Support_Home or contact 1-866-465-3829.