Forum Discussion

Historic F5 Account

Oct 28, 2011

SHA2 / SHA256 certificates

I have a customer that wants to use SHA2 / SHA256 certificates on their website (fronted by LTM), however clients such as Windows XP SP2 are unable to verify such certificates. The customer would lik...

Cirrus

Oct 30, 2011

Posted By nitass on 10/30/2011 08:02 AM

i understand sha2 is not an option in cipher suite of ssl2.0, ssl3.0, tls1.0.

The newer SHA hash methods (SHA256, etc.) are defined in TLS 1.2 (RFC5246). TMOS 11.0 is the first version to support TLS 1.2 and thus SHA2 and SHA256.

Regards

Kurt Knochner

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SHA2 / SHA256 certificates

Recent Discussions

Can you set Kerberos AAA server via session variable?

HTML Code injection Not detected by ASM

What will be happen to live and existing connections when failover HA BIG IP active-standby

SSL Offload and remove FQDN

High CPU utilization (100%).

Related Content

Automating ACMEv2 Certificate Management on BIG-IP

Re: Management Certificate

use irule to sign data using sha256

Automate Let's Encrypt Certificates on BIG-IP

Automating NGINX Certificate Rotation on AWS

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS