|Keys and Certificates / Certificates|
Certificates generated by SafeGuard Enterprise, such as the company, machine, security officer and user certificates are signed with hash algorithm SHA-256 by default during the first-time installation for enhanced security.
When upgrading from SafeGuard Enterprise 6 or earlier, hash algorithm SHA-1 is automatically used for self-signed certificates. You can manually change it to SHA-256 for enhanced security after the upgrade is completed.
Changing the algorithm for self-signed certificates involves the following steps:
To change the algorithm for self-signed certificates:
All certificates generated by SafeGuard Enterprise are signed with the new algorithm. For more information, see Sophos knowledgebase article 116791.