Menu
▾
▴
Re: [Ejbca-develop] Using certificate fingerprint sha2 for End Entities
|
From: Anders R. <and...@gm...> - 2015-05-06 11:55:09
|
AKI and SKI? Anders On 2015-05-06 13:45, Michael Ströder wrote: > Ralf Hornik wrote: >> I use EJBCA 4.0.16 (r17223) Jboss 5.1.0 GA. >> >> I dont see any chance to change the algorithm for the fingerprint extension >> to anything else than sha1. >> Browsers like chrome require certificate fingerprints of sha2. > Are you talking about certificate fingerprints or the certificate signature > algorithm? I guess it's the latter. > >> How can this extension be changed? > It's likely not a X.509v3 extension what you're talking about. > > You should look into the certificate profile(s): > > There you can choose SHA256WithRSA as the signature algorithm used when > issuing certs. IIRC this already worked with EJBCA 4.0.16 though I'm not sure > whether the Java version you're using is capable of doing that. > > Ciao, Michael. > > > > > ------------------------------------------------------------------------------ > One dashboard for servers and applications across Physical-Virtual-Cloud > Widest out-of-the-box monitoring support with 50+ applications > Performance metrics, stats and reports that give you Actionable Insights > Deep dive visibility with transaction tracing using APM Insight. > http://ad.doubleclick.net/ddm/clk/290420510;117567292;y > > > _______________________________________________ > Ejbca-develop mailing list > Ejb...@li... > https://lists.sourceforge.net/lists/listinfo/ejbca-develop |
