how to regenerate and use an SSL certificate which does not use weak Hash Algorithms

This comment was originally posted on DCIM Support by Kevin Kolobe on 2018-09-27

Hi All, spezialist, April

There is an SSL Certificate Signature Colllision Vulnerability (CVE-2004-2761) identified with the server in question. 

April is trying to get a workaround unless we have a release coming out soon that will resolve this issue. See vulnerability document attached Vulnerability Reference - Schneider server.pdf.

(CID:134036508)

This comment was originally posted on DCIM Support by spezialist on 2018-09-27

Dear Kevin Kolobe,

The above information refers to the free EcoStruxure IT Gateway software?

With respect.

(CID:134036512)

This comment was originally posted on DCIM Support by Kevin Kolobe on 2018-09-27

Hi spezialist,

The End User does not have the EcoStruxure IT Gateway as yet. They are only running DCE 7.5.0

(CID:134036520)

This comment was originally posted on DCIM Support by spezialist on 2018-09-27

Ok, in any case, thanks for the feedback.

(CID:134036560)

This answer was originally posted on DCIM Support by Christopherus Laurentius on 2018-09-28

Kevin,

Suggest using paid certificate from certificate authority?

Follow steps on generating the CSR from DCE, get it generated thru certificate authjority

Then replace the self signed certificate inside DCE following steps:

Modifying the SSL certificate

(CID:134678267)

This comment was originally posted on DCIM Support by spezialist on 2018-10-07

Dear April,

Tell us, please, did you solve your question or not?

With respect.

(CID:134679957)

This question is closed for comments. You're welcome to start a new topic if you have further comments on this issue.