cancel
Showing results for 
Search instead for 
Did you mean: 
Create Post
Level 11

1024 bit certificates and the WSUS self signed certificate for 3rd party applications

Jump to solution

For the upcoming 1024 bit certificate patch coming from Microsoft will those of us that are using Patch Manager for 3rd party applications have to issue another certificate if/when we patch our workstations and servers? In the meantime, we should probably not approve the patch if we are publishing 3rd party applications and still using the 512 byte WSUS self signed certificate.

0 Kudos
1 Solution

Lawrence Garvin did a nice write up on the impact, and steps to mitigate issues related to the upcoming certificate invalidation.

http://thwack.solarwinds.com/community/application-and-server_tht/patchzone/blog/2012/07/31/3rd-part...

TLDR- You'll need to remove all previously published third party content from wsus and republish after generating your 2048-bit self signed certificate.

View solution in original post

2 Replies

Lawrence Garvin did a nice write up on the impact, and steps to mitigate issues related to the upcoming certificate invalidation.

http://thwack.solarwinds.com/community/application-and-server_tht/patchzone/blog/2012/07/31/3rd-part...

TLDR- You'll need to remove all previously published third party content from wsus and republish after generating your 2048-bit self signed certificate.

View solution in original post

Level 11

Yes, exactly what I was looking for, thanks David. And thank goodness for Lawrence, he is the greatest.

0 Kudos