Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1019
Views
0
Helpful
1
Replies

How to upgrade certificate of Management appliance from SHA1 to SHA2

pbabu6001
Level 1
Level 1

‎10-05-2017 01:18 PM - edited ‎03-08-2019 07:26 PM

We are using M1070 in our email infrastructure and would like to upgrade the certificate from SHA1 to SHA2. Could you please suggest on how can I proceed further?

Labels:
0 Helpful
1 Reply 1

Libin Varghese
Cisco Employee
Cisco Employee

‎10-05-2017 05:50 PM

Hi,

To use a SHA-2 cert you would basically request a new certificate from the CA and request SHA-2. You could also create a signing request for a SHA-2 certificate on an external server and get it signed by the CA.

To install certificates on the SMA you would use the command "certconfig".
https://www.cisco.com/c/en/us/support/docs/security/content-security-management-appliance/118460-technote-sma-00.html

Signing requests for SHA-256 and other stronger certificates cannot be currently created on the ESA and is being tracked under the below feature request.

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCus19887/?reffering_site=dumpcr

Regards,
Libin Varghese

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents