locked
Any concern about upgrade SHA-1 to SHA-2 on Windows Server 2008 R2 PKI ? RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,

    I have a little knowledge about PKI. I was saw about how to setting and configure CA server to support SHA-2/SHA-256. Has anyone know about what should be concerned before migrate or what have to be done after migrate.

    1. Any impact with endpoint that still used SHA-1 certificate in environment, compatibility ?.

    2. Are they any related with the certificate template ?

    Thank you in advance


    • Edited by ThanaP Wednesday, January 21, 2015 2:47 AM
    Wednesday, January 21, 2015 1:27 AM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,

    1. Any impact with endpoint that still used SHA-1 certificate in environment, compatibility ?

    If we want to upgrade the CA to SHA2, we need to renew the root certificate on every client.

    2. Are they any related with the certificate template ?

    Once a CA is configured with a SHA2, all certificates it issues will use the same hash.

    Best Regards.

    Steven Lee Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact tnmff@microsoft.com.

    • Proposed as answer by Steven_Lee0510 Tuesday, February 3, 2015 2:47 PM
    • Marked as answer by Steven_Lee0510 Monday, February 9, 2015 1:51 AM
    Thursday, January 22, 2015 3:26 PM