Hello experts,
Wanted to post a question and get your opinion recommendations. I am currently in the process of setting up a secondary Issuing CA that can support the new CNG/ECC algorithms. Everything has been successful thus far, and I able to install
a certificate that uses the RSASSA-PSS Signature Algorithm as well as the sha256 Signature Hash Algorithm.
My problem is, however, when I scroll to the bottom of this certificates details pane, the field that displays the "Thumbprint Algorithm" still shows up as SHA1. Is this what is expected? I would assume that the thumbprint algorithm should match the
SHA256 path.
Thanks again for any comments/suggestions!
