What is the correct Microsoft Update for fixing SHA-2 on windows server 2008 R2?

Running windows server 2008R2 was told I have to update to SHA-2 from SHA-1.  Found Microsoft article that if you are using automatic windows updates the patch should already be on the server.  All my updates are current but there is no KB2949927 on my installed updates list.  

https://support.microsoft.com/kb/2949927
kdschoolAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

tshearonCommented:
If I am not mistaken, Windows 2008 R2 already has the Cryptography Next Generation (CNG) Suite B algorithms. SHA2 is part of that.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
David Johnson, CD, MVPOwnerCommented:
You're not mistaken it has sha-2 .. sha-2 has been supported since windows xp sp3
0
kdschoolAuthor Commented:
Is there a way for me to confirm that?
0
Introducing the "443 Security Simplified" Podcast

This new podcast puts you inside the minds of leading white-hat hackers and security researchers. Hosts Marc Laliberte and Corey Nachreiner turn complex security concepts into easily understood and actionable insights on the latest cyber security headlines and trends.

kdschoolAuthor Commented:
I found this statement.   What does it mean it's up to the individual applications to implement support?

Starting with Windows Vista and Server 2008, the Cryptography Next Generation (CNG) Suite B algorithms (including SHA2) are included in the operating system. It is worth noting that even though the algorithms are available, it is up to the individual applications to implement support.
0
kdschoolAuthor Commented:
This one is saying it does not have it unless you have the patch.  I can't find a patch that was installed KB 2949927.

https://technet.microsoft.com/en-us/library/security/2949927.aspx
0
tshearonCommented:
It just means they have to have interfaced with sha2 in their code instead of some other algorithm.
0
tshearonCommented:
You shouldn't be worried about that update. Likely it was released in error altogether. If you read the bottom of the page you linked:

"Revisions

    V1.0 (October 14, 2014): Advisory published.
    V2.0 (October 17, 2014): Removed Download Center links for Microsoft security update 2949927. Microsoft recommends that customers experiencing issues uninstall this update. Microsoft is investigating behavior associated with this update, and will update the advisory when more information becomes available."
0
kdschoolAuthor Commented:
So you recommend I just move forward and install the SHA-2 certificate?  I have a deadline of December 31 and they just told me this morning it had to change.
0
tshearonCommented:
I believe you will be fine to do so.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
SSL / HTTPS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.