20,213 questions
Windows server 2012 or 2022 OCSP request hashAlgorithm using sha256
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 33%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
Ki
11
Reputation points
I wanted to know if there is a way of configuring a Windows server 2012 or 2022 that is running a CA responder to accept OCSP request hashAlgorithm using (sha256). I know the RFC standard is to use SHA1. The reason is that I have a cisco firewall and cisco no longer send the OCSP request hashAlgorthm using SHA1, but now they only use SHA256. This then causes us to get an unauthorised response from the CA responder.
I wanted to see if there is support for us to allow the CA Responder to accept the OCSP request using sha256, either in the configuration or changing a registry key.
Thank you in advance
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Server | Devices and deployment | Configure application groups
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 28.999999999999996%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
poliveirasilva-MSFT 86 Reputation points Microsoft Employee2025-04-05T05:23:43.96+00:00 There is a discussion on this other thread: https://learn.microsoft.com/en-us/answers/questions/2154569/online-responder-(ocsp)-request-with-hashalgorithm
Sign in to comment
Sign in to answer