<div>
<div class="content wysiwyg-content">
Hello,<br />
<br />
We have Windows PKI running on server 2012 standard. We have a Root CA server that is switched off and an Issuing Intranet CA that gives out the certificates. I have found this guide to update to SHA256:<br />
<a href="http://www.cusoon.fr/update-microsoft-certificate-authorities-to-use-the-sha-2-hashing-algorithm-2/" rel="ugc">http://www.cusoon.fr/update-microsoft-certificate-authorities-to-use-the-sha-2-hashing-algorithm-2/</a><br />
<br />
Is this guide relevant in my case?<br />
Do I need to do this on both Root and Issuing CA?<br />
Will that affect existing certificates?<br />
Do I need to do anything with the certificate templates?<br />
<br />
Many thanks!
</div>
</div>


Hello,

We have Windows PKI running on server 2012 standard. We have a Root CA server that is switched off and an Issuing Intranet CA that gives out the certificates. I have found this guide to update to SHA256:
http://www.cusoon.fr/update-microsoft-certificate-authorities-to-use-the-sha-2-hashing-algorithm-2/

Is this guide relevant in my case?
Do I need to do this on both Root and Issuing CA?
Will that affect existing certificates?
Do I need to do anything with the certificate templates?

Many thanks!

Update Mocrosoft PKI CA to SHA256

Windows Server 2012 is the server version of Windows 8 and the successor to Windows Server 2008 R2. Windows Server 2012 is the first version of Windows Server to have no support for Itanium-based computers since Windows NT 4.0. Windows Server 2012, now in its second release (Windows Server 2012 Release 2) includes Foundation, Essentials, Standard and Datacenter, and does not support IA-32 or IA-64 processors.

Windows Server 2012

HTTPS is a protocol for secure communication over a computer network which is widely used on the Internet. HTTPS consists of communication over Hypertext Transfer Protocol (HTTP) within a connection encrypted by Transport Layer Security (TLS) or its predecessor, Secure Sockets Layer (SSL). The main motivation for HTTPS is authentication of the visited website and to protect the privacy and integrity of the exchanged data. HTTPS is widely used for protecting page authenticity on all types of websites, securing accounts and keeping user communications, identity and web browsing private.

SSL / HTTPS

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. In an encryption scheme, the intended communication information or message, referred to as plaintext, is encrypted using an encryption algorithm, generating ciphertext that can only be read if decrypted. For technical reasons, an encryption scheme usually uses a pseudo-random encryption key generated by an algorithm. An authorized recipient can easily decrypt the message with the key provided by the originator to recipients, but not to unauthorized interceptors.