Why Macy’s Supplier Portal Resets Connections on Sequoia
Macy’s supplier portal is hosted on Salesforce Commerce Cloud with Cloudflare as the CDN layer. The portal uses TLS 1.3 with ECH for all authenticated sessions. When suppliers access the portal from macOS Safari on networks with SSL inspection, the ISP gateway resets the ECH-enabled ClientHello, causing the TLS handshake to fail.
Salesforce Commerce Cloud’s TLS configuration supports TLS 1.2 fallback, but Cloudflare’s edge policy requires ECH for TLS 1.3 and only offers TLS 1.2 fallback when explicitly signaled by the client. ISP gateways that strip the TLS 1.2 signal cause Cloudflare to assume TLS 1.3-only support, which fails.
Browser Integrity Sync on Salesforce Commerce Cloud
Macy’s supplier portal uses browser integrity sync across Salesforce’s commerce infrastructure. When the TLS handshake is interrupted, the integrity sync fails, and Salesforce’s security layer blocks the supplier’s access, requiring re-authentication.
Fixing Macy’s Supplier Portal Connection Resets
Disabling SSL Inspection for Macy’s Domains
Configure your network proxy to bypass Macy’s domains. In macOS, navigate to System Settings → Network → Wi-Fi → Details → Proxy. Add *.macys.com, *.supplier.macys.com to the bypass list.
Using Chrome with TLS 1.2 Forced
Download Chrome → modify the shortcut target to include --tls-max-version=1.2. Launch Chrome and access Macy’s Supplier Portal. TLS 1.2 does not require ECH, so the handshake completes through ISP gateways that block ECH.
Clearing Macy’s Browser Cache
Open Safari → Clear History → All History. Then Settings → Privacy → Manage Website Data → remove all Macy’s entries. Restart Safari and access the supplier portal with a fresh TLS session.
Call to Action
Use the webs.ninja network lab to run a TLS handshake diagnostic for Macy’s supplier portal. The diagnostic identifies whether the reset is caused by your ISP’s gateway, a Cloudflare edge node failure, or Macy’s Salesforce Commerce Cloud infrastructure, directing the fix to the correct layer.