Unsolved
This post is more than 5 years old
20 Posts
2
6428
Renewing SSL Certification of ESRS : SHA-2 types
Using industry standard Secure Sockets Layer (SSL) encryption over the Internet and an EMC-signed digital certificate for
authentication, the ESRS creates a secure communication tunnel.
I have two questions of SSL Certification?
- When does SSL Certification migrate from SHA-1 to SHA-256 (SHA-2)?
Is it 9/15/2015 from valid date of the digital certificat on esrs.emc.com ?
- After migrating from SHA-1 to SHA-2, Is it need to upgrade from ESRS V2 to ESRS/VE lastest version and generates a SHA-2 cert request?
I understood that ESRS Gateway and EMC servers(esrs.emc.com, GAS, esrs-core.emc.com) have EMC-signed digital certificate.
Each ESRS has a unique digital certificate that is verified by EMC whenever an ESRS makes a connection attempt.
Cal-IF4UI
56 Posts
1
April 20th, 2015 09:00
See page 25 EMC Secure Remote Support Security Management and Certificate Policy Frequently Asked Questions
(found at Support.emc.com in regards to the certificate question . In regards to migration of SHA 1 to SHA2 , this is not known at this time.
Cal-IF4UI
56 Posts
0
April 21st, 2015 07:00
For additional resources in regards to SHA1 and the transition to SHA2 see Microsoft TechNet blog:
http://blogs.technet.com/b/pki/archive/2013/11/12/sha1-deprecation-policy.aspx
eShark
20 Posts
0
April 21st, 2015 19:00
Will ESRS v2.x and ESRS/VE follow this policy by Microsoft?
Does it mean ESRS infrastructure servers use CA that provided by Microsoft?
========== Microsoft : SHA1 Deprecation Policy ==================
SSL Certificates
For SSL certificates, Windows will stop accepting SHA1 end-entity certificates by 1 January 2017. This means any time valid SHA1 SSL certificates must be replaced with a SHA2 equivalent by 1 January 2017.
Cal-IF4UI
56 Posts
0
April 22nd, 2015 06:00
I am not in a position to state that fact, however ESRS would follow recommendations based on Microsoft recommendations and the Industry standards and will update and provide a secure solution prior to that date
Anonymous
5 Practitioner
5 Practitioner
•
274.2K Posts
0
November 25th, 2015 23:00
Any update on this question? A lot of customer is asking and we don't have a firm date and reply.
Chris1213
4 Posts
1
February 22nd, 2016 00:00
22 February 2016 and still no answer on that question.
We really need to move from sha1 to sha256 with RSA 4096.
AlvaroG
97 Posts
1
March 2nd, 2016 06:00
Is there a procedure to regenerate the certificate with SHA-2?
When will be available?
Anonymous
5 Practitioner
5 Practitioner
•
274.2K Posts
0
August 6th, 2016 02:00
Does anyone know if there is a KB or Support Document which has the minimum code level on all EMC products support SHA2 Certificate? Note: I have a customer current carry out an audit.
rblaas1975
2 Posts
0
February 1st, 2017 23:00
Hi all,
is it possible to use a wildcard certificate?
We have our own so would be nice to use this one..