Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Ian_Harrison
New Contributor

v5.2.5 and SHA1 or SHA256

Hi

 

Can anyone tell me if the certificate used for SSL deep inspection has been changed to use SHA256 or is it still using SHA1? The certificate on v5.2.3 is called Fortinet_CA_SSLProxy. I have checked the release not for v5.2.5 but can't find any info in there.

 

Thanks

 

Ian

Web: www.activatelearning.ac.uk Twitter: twitter.com/activate_learn Facebook: facebook.com/Activate-Learning
3 REPLIES 3
emnoc
Esteemed Contributor III

sha256 

Look at the certificate details.

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
mrandrew
New Contributor II

I have 5.2.5 running on a FWF 60D.  I downloaded the Fortinet_CA_SSLProxy from the certificates menu and opened with Windows.  Signature algorithm sha1RSA, Signature hash algorithm sha1, Public key RSA (2048), Thumbprint algorithm sha1.  

Andrew

Andrew
emnoc
Esteemed Contributor III

I can't speak of  v5.2.6 but under v5.4 it's the certificate name;

 

Fortinet_CA_SSL.cer vrs Fortinet_CA_SSLProxy.cer

 

You should try both and review the Signature Algorithm .

 

Ken

 

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors