XG v16 SHA2 certificate issue

Anders,

SHA2 is still not supported! Hope they will remove SHA-1 and move to SHA-2.

The other way is to generate a certificate externally and upload it inside XG.

Thanks

Wow! To bad the release notes recommend regenerating the certificate to move to SHA2. Lets hope they solve this :)

Thanks for your reply!

Regards, Anders

Wow! To bad the release notes recommend regenerating the certificate to move to SHA2. Lets hope they solve this :)

Thanks for your reply!

Regards, Anders

Anders,

where did you read SHA2 from? I checked all the v16 release notes, but I did not find nothing about. Maybe I am missing something....

Anders,

you were right:

https://community.sophos.com/kb/en-us/125267#related%20information1

Sorry about that!

On v16, SHA-256 has been implemented. CA uses already SHA-2 algorithm while ApplianceCertificate does not. Re-generating the appliance certificate from Certificates Menu did the trick.
Now mine appliancecertificate is updated to SHA-2 algorithm.

Make sure the CA is updated to SHA-2 and then regenerate all the certificates previously signed by Sophos CA.

I was fooled by the thumbprint still showing SHA1 but the certificate is updated to SHA2. Great news! :)

Thanks!