I found this
https://learn.microsoft.com/en-us/answers/questions/486172/birthday-attacks-against-tls-ciphers-with-64bit-sw.html
https://learn.microsoft.com/en-us/answers/questions/348323/how-to-disable-3des-and-rc4-on-windows-server-2019.html
Regards
It is possible to get a list of all the certificates using powershell to get all the signature algorithm?
Hello
I am trying to resolve this issue
CVE-2004-2761 SSL Certificate Signed Using Weak Hashing Algorithm
Based on this article
https://social.technet.microsoft.com/Forums/en-US/55cd6302-b9ef-47fd-a6aa-b17132d464a9/ssl-certificate-signed-using-weak-hashing-algorithm?forum=winserversecurity
I would like to know if it is possible to get a list of all installed certificates with their signature algorithm using PowerShell. Obtaining this information would make it easy to identify which one should be modified.
Cheers
carlos quintana
2 answers
Sort by: Most helpful
-
Carlos Giovanny Quintana Corredor 1 Reputation point
2022-09-19T17:20:30.837+00:00 -
Limitless Technology 44,221 Reputation points
2022-09-21T15:22:25.46+00:00 Hello,
You can use the next:
SL Cert:\LocalMachine\TrustedPublisher // You may change this path, for other certificate store location of your interest
$Cert = GCI | where{$_.Thumbprint -eq "CERTIFICATE THUMBPRINT HERE"}
$Cert.SignatureAlgorithm.friendlyname
$Cert.publickey.key.keysize-------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept as answer--