I have an internal CA that the CA Cert is sha1.
It is an internal Enterprise CA, used for personal purposes only
What is the best practice to upgrade a CA Cert from Sha1 to Sha2?
Down grade the CA Server to a non CA Server and then make it CA Server with the CA Cert being a SHA2,
or would the following command do the sane?
certutil -setreg ca\csp\CNGHashAlgorithm SHA256
net stop certsvc && net start certsvc.
Sincerely
David