Self signed certificates SHA-1

[matteu]

Hello,

I would like to know if there is a solution to avoid SHA1 for self signed certificate whith Veeam backup for microsoft 365 ?

Is this normal it's not SHA-2 by default ?

[HannesK]

Hello,
which certificate is that and what version are you using?

I see SHA256 on a fresh version 6



best regards,
Hannes

[matteu]

Hello, thanks for your answer.

Strange...
I'm on V6 and it's not and upgrade.
It's the REST certificate for the restore portal.

When I go my computer personal certificate store, I have 5 veeam certificate and only 1 is SHA2 but it's with VBM365 installation and not for restore portal (rest, authentication or restore portal)

[HannesK]

Hello,
ok, now I got it and I can see it. Looks wrong to me, I will check that.

On the other hand: what is the use case of asking for a more secure algorithm for an overall insecure configuration?

Best regards,
Hannes

[matteu]

It's the question I asked to myself too and I totally agree with "self signed" is not the best.

However, I don't think it's a good way to think here and SHA-1 should not be seen anymore in 2022 I think.

I'm surprised to see it and I'm just asking if this is "normal" or something is on the roadmap to use SHA-2 ?

[HannesK]

Looks wrong to me, I will check that.

please see above

[matteu]

[HannesK]

confirmed as bug - thanks for reporting!

[matteu]

have a nice day