Upgrading Internal SHA1 Self-Signed Certificates

Hello,

There are 3 self-signed certificates that were installed during the SAM install. These are not being used by IIS but (I assume) are being used internally by SAM itself. All of these are using a 'sha1' signature hash algorithm. As SHA1 is being deprecated, my team is being told that these certificates need to be upgraded to use the 'sha256' signature hash algorithm. How can my team and I go about doing this?

Find more posts tagged with

sam

sha256

self-signed

sha1

Accepted answers

joe.tran

The primary cert that can be replaced is the SolarWinds-Orion cert and you can view the instructions I posted in this thread on how to do it: How can I obtain replacements for the 3 SolarWinds certificates in IIS 7 (on W2K8 R2 server)?

Please make special note of the caveats about stored credentials.

As noted by jiri.tomek in that very same Thwack thread, the other self-signed certs are not used often.

All comments

joe.tran

Please make special note of the caveats about stored credentials.

As noted by jiri.tomek in that very same Thwack thread, the other self-signed certs are not used often.

wheels387

Great, thank you. I searched the forums prior to submitting my post but didn't see that pop up. Sorry for the repost!