TransUnion is disabling TLS 1.1 and requiring stronger cipher access
TransUnion is preparing to update the Client Technical Services Portal (CTS Portal) to accept only traffic using version 1.2 of TLS (Transport Layer Security). TLS 1.1 will no longer be enabled. Browsers using TLS 1.1 will no longer be able to access the CTS Portal. This change will allow TransUnion to leverage newer versions of TLS to increase the security of our customer connections. See General Announcement #188 for additional information.
Notice: HTTP GET method will be disabled in TransUnion Net Access (TUNA)
As part of ongoing security enhancements, TransUnion will no longer support the HTTP GET method. TransUnion’s target for blocking all HTTP GET requests, including Production and UAT/Test, is currently set for August 10, 2020. As an alternative, customers can use HTTP POST. This method is used to send data to a server to create and update a resource. Data sent to the server using HTTP POST is stored in the request body of the HTTP request and is more secure than the GET method.
The change to disable the GET method is currently targeted for the following dates:
- UAT/Test: July 15, 2020
- Production: August 10, 2020
See General Announcement #182 for additional information.
Increase to TransUnion Net Access (TUNA) Availability
Reminder to all TUNA customers who blacklist outbound traffic: you will need to whitelist the IP address range listed below to leverage TransUnion's secondary TUNA platform, which will enhance its current High Availability even further, as well as "future-proof" for upcoming TransUnion products.
IP address range: 66.175.240.0/20
IP address range: 66.175.240.0/20
Troubleshooting Guide
Access tips to help resolve common transaction-based error conditions.
Legal and Regulatory Announcements
Stay abreast of the latest legal, regulatory and Fair Credit Reporting Act (FCRA) requirements that may affect your business.
