System Requirements

The configuration that any customer using the e-OSCAR system needs are divided into four general areas. These areas are the Personal Computer being used to access the system, the web browser configuration and the network configuration that is being accessed.

Given that this is a browser-based configuration transmitting significant data across the network, the web browser and user's network configuration have more precise constraints than the type of Personal computer, assuming certain minimum standards are met. The suggested configuration for the Personal Computer and Web Browser as well as some recommended network settings are outlined in the links and section below:



TLS System Requirements

Upgrade to TLS 1.2 by May 29, 2017 to Retain Access to e-OSCAR®

Upon Online Data Exchange's tier 1 hosting move from CGI to Rackspace during the weekend of May 26-29, we will require that all users or integrations connecting to e-OSCAR® use TLS 1.2 encryption protocol.

Why is OLDE making this change?

As the security and integrity of data is of paramount importance to OLDE, the Credit Reporting Agencies, and all Data Furnishers, OLDE is focused on helping Data Furnishers improve their security by using the latest security protocols.  Beginning May 29, 2017, OLDE will require TLS 1.2 and later encryption protocol to maintain the highest security standards and promote the safety of consumer data.  Moving to TLS 1.2 provides a more secure environment and prepares you for continued PCI compliance.

What is TLS 1.2?

Transport Layer Security, or TLS, is a cryptographic protocol that provides communications security over a computer network.  This protocol aims to provide privacy and data integrity between two communicating computer applications. 

What is the impact of TLS 1.2 enablement?

After OLDE enables TLS 1.2, any inbound connection to e-OSCAR that rely on an older security protocol will fail.  This could impact your ability to log on to e-OSCAR, receive and respond to consumer disputes, obtain notifications from Credit Reporting Agencies, and download reporting regarding your transactional history within e-OSCAR.

How can customers avoid a service disruption?

Your organization should verify that all browsers are compatible with TLS 1.2.  If your browser is not compatible with TLS 1.2 after we make this change, your users will NOT be able to access e-OSCAR.  We recommend that you begin planning to support TLS 1.2 as soon as possible.  Please contact your IT Security department or site administrator regarding your company's system requirements and for the best method to implement the upgrade to TLS 1.2.

Refer to the compatibility guidelines below:

Browser

TLS 1.2 Compatibility Notes

Microsoft Internet Explorer (IE)

Desktop & mobile IE 11

Compatible by default

Desktop IE 9 & 10

Capable when run in Windows 7 or newer, but not by default.  Windows Vista and older operating systems (such as Windows XP) are not compatible with TLS 1.2 encryption

Desktop IE 8 & below

Not compatible or stable with TLS 1.2 encryption

Mozilla Firefox

Firefox 27 & higher

Compatible by default

Firefox 23 to 26

Capable, but not by default

Firefox 22 and below

Not compatible with TLS 1.2 or higher encryption


Disclaimer:   These compatibility guidelines are general in nature and have been prepared without the knowledge of the specific environment in which your systems operate.  These guidelines are current at the time of this writing, but may require update over time.  While OLDE has made every effort to ensure the accuracy of these guidelines, OLDE does not warrant their accuracy, adequacy, or completeness.

What error message will I see if my browser is not TLS1.2 compatible?

Depending on the user access point, when a user tries to access e-OSCAR with a browser using TLS 1.0 or TLS 1.1 after the e-OSCAR requires TLS 1.2 or higher for HTTPS connections, the user may see an error message with recommended next steps to resolve the incompatibility. Users may also see a message that tells them the log cannot be displayed (see below for an example).

Summary of the user message and language display experience as follows:

Access Point

User Error Message

Message Language

My Domain login page

Error message will display upon visiting this page

"Stronger security is required"


How do I access and change my connections / internet options in Internet Explorer in Windows 7 or newer?

In the Internet Options window that appears, click on the Advanced tab at the top of the window. Scroll down to the end of the list and click in the square check boxes next to "Use TLS 1.2" if they don't already have a check mark in them.


After enabling TLS 1.2, accesing https://e-oscar-web.net/ it is expected to be sucessful with Internet Explorer.    

For additional technical assistance and advice, please contact your IT Security department or site administrator regarding your company's specific system requirements and for their recommendation for the best method to implement the setting to TLS 1.2 or higher.


Questions?
Call the e-OSCAR Help Desk at (866) MY OSCAR or (866) 696-7227 from 8:00 a.m. to 8:00 p.m. ET Monday through Friday.