This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 1%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
I was wanting to know how to add support for importing pfx certs with AES256-SHA256 encryption vs the older TripleDES-SHA1. i.e. the encryption in the screenshot below when exporting pfx on Windows 10.
It does work on Windows Server 2019 and higher but not on the Windows server 2016/2012R2 versions. As a work around been using the TripleDES-SHA1, but would prefer not to need the work around.
Thanks in advance.
Windows Server 2012 R2 and Windows Server 2016 operating system will never receive AES256-SHA256 algorithm support for PFX certificates.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 55.00000000000001%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJE%3C/text%3E%3C/svg%3E)
I found myself at this location. After some further digging, I found the following information that you may find helpful.
https://medium.com/@yildirimabdrhm/how-to-create-sha256-csr-on-windows-739cba893fae
this method does mention an alternative method using OpenSSL. I was able to generate the request using MMC as the article discusses.