This here is a consumer forum.
Please do ask here: windows-server-2019 - Microsoft Q&A
Windows Server 2019 Certification Authority Root Certificate wonky
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
Hello.
I am running Windows Server 2019 Standard, Build 1809 (OS build 17763.1790) that is fully patched as of March 3, 2021. It is a VM.
I just added "Active Directory Certificate Services / Certification Authority" role. (I have previously added "Active Directory Domain Services" role.)
During the post-install configuration, I specified that I wanted to generate a 4096-bit length RSA key for the Root CA certificate.
Everything looked good.... However, when I actually look at the Root CA certificate that was generated, it contains a 2048-bit public key!
I rolled back the VM thinking that I accidently chose 2048-bit by mistake. I did the whole process again - making sure that I absolutely selected 4096-bit. And again, the Root CA certificate that was generated contained a 2048-bit public key.
Is this a bug? If not, can someone explain how I can actually generate a 4096-bit key?
Edit: I should also note that I selected SHA512 for the hashing algorithm instead of the default SHA256.
Windows for home | Other | Security and privacy
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.
Answer accepted by question author
3 additional answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(60.8, 22%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
JuliaMarvin 20,070 Reputation points Volunteer Moderator2021-03-03T18:59:43+00:00 You're welcome :)
Glad to have helped!
-
Anonymous
2021-03-03T18:53:05+00:00 Thank you for letting me know. And the link to get to where I need to be.
-
Anonymous
2021-03-03T18:50:11+00:00 Hi,
I'm an Independent Advisor here to help you.
This is a Community Forum, If you have question regarding Windows server, etc
Go to Microsoft Q&A: https://docs.microsoft.com/en-us/answers/products/