configure ssl certificate hash-algorithm

configure ssl certificate hash-algorithm hash_algorithm

Description

This command configures the hash algorithm.

Syntax Description

ssl SSL.
certificate Certificate.
hash-algorithm Hash algorithm to use (Default SHA-512).
hash_algorithm Name of hash algorithm to use (Default SHA-512).

Default

SHA-512 algorithm.

Usage Guidelines

Use this command to configure the hash algorithm. Once configured, this configured algorithm will be used for the next certificate creation. Previously MD5 (Message-Digest algorithm 5) was the only hashing algorithm available. As of ExtremeXOS 16.1, the default has been changed to more secure SHA-512 algorithm. If you prefer the older version, you can configure to the least secure MD5 hashing algorithm.

Example

The following example displays the show ssl output with the SHA-512 algorithm configured:

X460G2-48t-10G4.5 # show ssl
HTTPS Port Number: 443 (Enabled)
Signature Algorithm configured: SHA-512 with RSA Encryption
Private Key matches the Certificate's public key.
RSA Key Length: 1024
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 0 (0x0)
    Signature Algorithm: md5WithRSAEncryption
        Issuer: C=IN, O=ext, CN=ext
        Validity
            Not Before: Dec  7 21:52:53 2014 GMT
            Not After : Dec  7 21:52:53 2015 GMT
        Subject: C=IN, O=ext, CN=ext

History

This command was first available in ExtremeXOS 16.1.

Platform Availability

This command is available on the Summit X450-G2, X460-G2, X670-G2, X770, and ExtremeSwitching X440-G2, X620, X690, X870 series switches.