cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Dvanmeter
Dvanmeter
Level 10
Report Inappropriate Content
Message 1 of 3
‎08-20-2015 08:01 AM

EPO and SHa-1

In a recent vulnerability scan we found that McAfee EPO reports the following

SHA-1-based Signature in TLS/SSL Server X.509 Certificate

SSL certificate is signed with SHA1withRSA. Stop using Sha-1

Talking to Mcafee support they told me that Sha-1 is the default and the only way to move to sha-2 or greater is to reinstall the server using FIPS mode.  Obviously this is a great amount of work so I wanted to see if anyone else has had to deal with this or can confirm what I am being told.

Reply
2 Replies
Highlighted
mmcgary
mmcgary
Level 12
Report Inappropriate Content
Message 2 of 3
‎08-20-2015 08:29 AM

Re: EPO and SHa-1

What you were told is correct. EPO in non-FIPS mode supports a sha-1 2048 bit certificate only.

0 Kudos
Reply
trevorw2000
trevorw2000
Level 10
Report Inappropriate Content
Message 3 of 3
‎03-11-2016 10:22 AM

Re: EPO and SHa-1

Has the status of this changed any?  Is SHA-2 still only supported in FIPS mode?  The reason I ask is because I'm having trouble importing a new certificate, which is obviously SHA-2. ePO has been the first application we've had that hasn't liked the cert.

0 Kudos
Reply
More McAfee Tools to Help You
  • How to Troubleshoot Install & Deployment Failures
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator

    • Community Help Hub

      New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

    • Find Forum FAQs
    • Learn How to Earn Badges
    • Ask for Help
    Go to Community Help

    Join the Community

      Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

    • Get helpful solutions from McAfee experts.
    • Stay connected to product conversations that matter to you.
    • Participate in product groups led by McAfee employees.
    Join the Community
    Join the Community


    Corporate Headquarters
    2821 Mission College Blvd.
    Santa Clara, CA 95054 USA

    Consumer Support   |   Enterprise Support   |   McAfee.com

    Legal   |   Privacy   |   Copyright © 2019 McAfee, LLC