SHA-1 Signing Certificate Expiration and Deprecation on Dell Data Security Products
Summary: Learn about how SHA-1 signing certificate expiration and deprecation may affect Dell Data Security (formerly Dell Data Protection) products.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Symptoms
Note:
- Products listed in the Affected Products may not be in an Active state. For up-to-date information about support for a product, reference Product Life Cycle (End of Support and End of Life) Policy for Dell Data Security. If you have any questions on alternative articles, either reach out to your sales team or contact endpointsecurity@dell.com.
- Reference Endpoint Security for additional information about current products.
As of January 2020, the secure hash algorithm 1 (SHA-1) code-signing certificates that Dell Data Security products use is no longer valid. With the deprecation of SHA-1 globally, new SHA-1 certificates will not be issued, which may impact older operating systems.
Affected Products:
- Dell Encryption Enterprise
- Dell Data Protection | Enterprise Edition
- Dell Encryption Personal
- Dell Data Protection | Personal Edition
- Dell Encryption External Media
- Dell Data Protection | External Media Edition
- Dell Endpoint Security Suite Enterprise
- Dell Endpoint Security Suite Pro
- Dell Data Guardian
- Dell Security Management Server
- Dell Data Protection | Enterprise Edition Server
- Dell BitLocker Manager
- Dell Data Protection | BitLocker Manager
- Dell Encryption Self-Encrypting Drive Manager
- Dell Data Protection | Self-Encrypting Drive Manager
- Dell Data Protection | Server Edition
- Dell Full Disk Encryption
- Dell Threat Defense
- Absolute
- CrowdStrike Falcon Sensor
- Carbonite Endpoint
- VMware Carbon Black Endpoint
Affected Operating Systems:
- Windows 7
- Windows Server 2008 R2 and earlier
Cause
Not applicable
Resolution
As of January 2020, SHA-1 signing certificates are no longer valid and cannot be renewed. Devices running Windows 7, Windows Server 2008 R2, or Windows Server 2008 SP2 require Microsoft updates:
Note: Operating systems released before Windows Server 2008 SP2 do not support SHA-2 or later code signing.
Applications and installation packages that are signed with SHA-1 certificates still function. However, an error is displayed on the endpoint during installation or execution of the application without these updates installed.
To contact support, reference Dell Data Security International Support Phone Numbers.
Go to TechDirect to generate a technical support request online.
For additional insights and resources, join the Dell Security Community Forum.
Affected Products
Absolute, Carbonite, CrowdStrike, Dell Data Guardian, Dell Encryption, Dell Threat Defense, Dell Endpoint Security Suite Pro, Dell Endpoint Security Suite Enterprise, VMware Carbon BlackArticle Properties
Article Number: 000125523
Article Type: Solution
Last Modified: 20 Nov 2023
Version: 13
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.