Menu Home

DigiCert SHA-1 Sunset Tool: Find & Replace SHA-1 Certificates

With very little effort I replaced my existing SSL cert which was SHA-1 based with a SHA-256 version for free.

The SHA-1 Sunset Tool makes it easy to find all of your SHA-1 certificates. Enter your domain name to find affected certificates and upgrade to SHA-256 with a free DigiCert certificate.

via DigiCert SHA-1 Sunset Tool: Find & Replace SHA-1 Certificates.

It’s a neat offer. I could have asked my existing SSL cert provider but I wanted to see how well this works. The instructions and validation steps were very simple.

Categories: Geek

Tagged as:

Jan Dembowski

1 reply

  1. Yes, but check that the root DigiCert Global Root certificate is signed with SHA-1, so it’s just a lie… a cover up! Check it by yourself 😀
    With that cert they sign the intermediate one using SHA-256, that’s true. But it’s as good as nothing.
    Capture: http://img1.imagehousing.com/86/e9f8101f519e19bc1e14bd2d188f2fef.png

    It’s also funny that if you use DigiCert’s certificate check on their own, it will fail xD : https://www.digicert.com/help/
    Capture: http://img1.imagehousing.com/66/0af00a21ff7f161fab7a371612ab966c.png

    Cheers!!