Current Position:Home > Any concern about upgrade SHA-1 to SHA-2 on Windows Server 2008 R2 PKI ?

Any concern about upgrade SHA-1 to SHA-2 on Windows Server 2008 R2 PKI ?

Update:10-11Source: network consolidation
Advertisement
Hi,
I have a little knowledge about PKI. I was saw about how to setting and configure CA server to support SHA-2/SHA-256. Has anyone know about what should be concerned before migrate or what have to be done after migrate.
1. Any impact with endpoint that still used SHA-1 certificate in environment, compatibility ?.
2. Are they any related with the certificate template ?
Thank you in advance

The Best Answer

Advertisement
Hi,
1. Any impact with endpoint that still used SHA-1 certificate in environment, compatibility ?
If we want to upgrade the CA to SHA2, we need to renew the root certificate on every client.
2. Are they any related with the certificate template ?
Once a CA is configured with a SHA2, all certificates it issues will use the same hash.
Best Regards.
Steven Lee Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]