What is the correct Microsoft Update for fixing SHA-2 on windows server 2008 R2?

kdschool
kdschool used Ask the Experts™
on
Running windows server 2008R2 was told I have to update to SHA-2 from SHA-1.  Found Microsoft article that if you are using automatic windows updates the patch should already be on the server.  All my updates are current but there is no KB2949927 on my installed updates list.  

https://support.microsoft.com/kb/2949927
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Commented:
If I am not mistaken, Windows 2008 R2 already has the Cryptography Next Generation (CNG) Suite B algorithms. SHA2 is part of that.
Top Expert 2016
Commented:
You're not mistaken it has sha-2 .. sha-2 has been supported since windows xp sp3

Author

Commented:
Is there a way for me to confirm that?
Fundamentals of JavaScript

Learn the fundamentals of the popular programming language JavaScript so that you can explore the realm of web development.

Author

Commented:
I found this statement.   What does it mean it's up to the individual applications to implement support?

Starting with Windows Vista and Server 2008, the Cryptography Next Generation (CNG) Suite B algorithms (including SHA2) are included in the operating system. It is worth noting that even though the algorithms are available, it is up to the individual applications to implement support.

Author

Commented:
This one is saying it does not have it unless you have the patch.  I can't find a patch that was installed KB 2949927.

https://technet.microsoft.com/en-us/library/security/2949927.aspx

Commented:
It just means they have to have interfaced with sha2 in their code instead of some other algorithm.
Commented:
You shouldn't be worried about that update. Likely it was released in error altogether. If you read the bottom of the page you linked:

"Revisions

    V1.0 (October 14, 2014): Advisory published.
    V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available."

Author

Commented:
So you recommend I just move forward and install the SHA-2 certificate?  I have a deadline of December 31 and they just told me this morning it had to change.
Commented:
I believe you will be fine to do so.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start Today