Need to update the internal CA with RSA 2048 bit and SHA256RSA

Hello, we have an internal Microsoft Root CA Server 2008 R2
We need to update the encryption algorithm and public key from SHA1 RSA 1024 to SHA256RSA and RSA 2048 bit.

And when i try to duplicate Web Server Template it says "The Web Server Certificate template could not be duplicated. Access is denied"

Thanks for your help
namergSystems AdministratorAsked:
Who is Participating?
 
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
It may be that 2008 is too old for this. If this is true, likely best to use https://LetsEncrypt.org which has provided free + strong SSL certs for years + provides all the command line tools to generate + auto-renew SSL certs.

Since these certs are public (vs. private) you'll also escape the problem of every person connecting to your cert having to accept the cert each time it changes or somehow deploy your private cert chain to each machine in your enterprise.

With the advent of https://LetsEncrypt.org there's no longer any requirement to jump through the hoops of running your own CA.
1
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.