Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
745
Views
0
Helpful
3
Replies

MS SHA-1 Support stops 14/2-2017 - impact on 802.1x validation ?

tuenoerg
Cisco Employee
Cisco Employee

‎12-02-2016 01:41 AM

Hi all,

MS stops the support of SHA-1 certificates soon, and I know it affects Anyconnect client.

But - will it impact customers using SHA-1 certificates in their ISE infrastructure with 802.1x (eap-tls) and the builtin supplicant on Windows operating systems too ?

Best regards

Tue

0 Helpful
3 Replies 3

hslai
Cisco Employee
Cisco Employee

‎12-04-2016 09:17 PM

From my understanding of https://aka.ms/sha1, Phase 1 impacts browsers only. And, its FAQ said,

How will SHA-1 client authentication certificates be impacted?

The February 2017 update will not prevent a client using a SHA-1 signed certificate from being used in client authentication.

0 Helpful

csarrazi
Cisco Employee
Cisco Employee
In response to hslai

‎02-09-2017 03:02 AM

ISE 2.2 default self signed cert is provide with a SHA-1 cert, even for the administration page, we need to update the default certificate to SHA-2

0 Helpful

hslai
Cisco Employee
Cisco Employee
In response to csarrazi

‎02-09-2017 09:06 AM

CSCun17164 is an existing defect on that.

0 Helpful
Customers Also Viewed These Support Documents