Determining which TLS version is used by a Pipeline Pilot server

From time to time, we get reports about issues related to a TLS version mismatch, e.g. when using the Pipeline Pilot "HTTP Connector" component to connect to a remote server. The connection might fail with an error message like:

"...Error connecting TLS/SSL object to server..."

This could happen if you for example try to connect to a server which requires TLS 1.2 from an older Pipeline Pilot Server that does not support this TLS version.

The OpenSSL version that ships with the Pipeline Pilot server has changed over time:

  • 2017 and earlier use OpenSSL 0.9.8 which only supports SSLv3 and TLS 1.0.
  • 2017 R2, 2018, and 2019 use OpenSSL 1.0.2 which supports TLS 1.0, TLS 1.1, and TLS 1.2 (it also supports SSLv3, but due to security issues this was disabled).
  • 2020, 2021 and 2022 use OpenSSL version 1.1.1 which supports TLS 1.0, TLS 1.1, TLS 1.2 and TLS 1.3.

You can easily get the current OpenSSL version used by Pipeline Pilot with the following command:

\apps\scitegic\openssl\bin\win64\openssl version