configure ssl certificate hash-algorithm

configure ssl certificate hash-algorithm hash_algorithm

Description

This command configures the hash algorithm.

Syntax Description

ssl SSL.
certificate Certificate.
hash-algorithm Hash algorithm to use (Default SHA-512).
hash_algorithm Name of hash algorithm to use (Default SHA-512).

Default

SHA-512 algorithm.

Usage Guidelines

Use this command to configure the hash algorithm. Once configured, this configured algorithm will be used for the next certificate creation. Previously MD5 was the only hashing algorithm available. As of ExtremeXOS 16.1, the default has been changed to more secure SHA-512 algorithm. If you prefer the older version, you can configure to the least secure MD5 hashing algorithm.

Example

The following example displays the show ssl output with the SHA-512 algorithm configured:

X460G2-48t-10G4.5 # show ssl
HTTPS Port Number: 443 (Enabled)
Signature Algorithm configured: SHA-512 with RSA Encryption
Private Key matches the Certificate's public key.
RSA Key Length: 1024
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 0 (0x0)
    Signature Algorithm: md5WithRSAEncryption
        Issuer: C=IN, O=ext, CN=ext
        Validity
            Not Before: Dec  7 21:52:53 2014 GMT
            Not After : Dec  7 21:52:53 2015 GMT
        Subject: C=IN, O=ext, CN=ext

History

This command was first available in ExtremeXOS 16.1.

Platform Availability

This command is available on ExtremeSwitching 5320, 5420, 5520, and 5720 series switches.