[CrossPost] Implementing SHA-2 in Active Directory Certificate Services

A fellow engineer at Microsoft, Roger Grimes, has published a great article on Implementing SHA-2 in ADCS.  You can read it at the link below:


Comments (3)
  1. fbifido says:

    How can I create/build the best CA in the world using the strongest best-practices from Microsoft to participate in the RootCA program ?


    do you have any step-by-step guide on how to create a CA that can best MS rootca system & keep it up to date?
    can it also have dnssec, ipv6, dane, and any other new security standard out now?
    if on an enterprise network, how can I use this CA to secure/encrypt all communication on the lan, pc-to-pc, mac-to-mac, pc-to-mac, any_device-to-mac-or-pc?


  2. Leif says:

    Will there be any news about PKI in 2016? Is this blog site dead no post in a year?

    1. WesH [MSFT] says:

      No, it’s quite alive.

Comments are closed.

Skip to main content