My systems are regularly scanned by Trustwave for PCI compliance and they have today reported that they will no longer accept the SHA1 certificate signing algorithm.
Full details of the error are as follows:
Subject: /O=captive-portal.peplink.com/OU=Domain Control Validated/CN=captive-portal.peplink.com
Issuer: /C=US/ST=Arizona/L=Scottsdale/O=GoDaddy.com, Inc./OU=http://certificates.godaddy.com/repository/CN=Go Daddy Secure Certification Authority/serialNumber=07969287
Certificate Chain Depth: 0
Certificate Signature Alg: sha1WithRSAEncryption
I’m not sure what the devices are using this SSL certificate for, but am I able to replace the certificate with one of my own? Do you have any plans to upgrade the default certificate to a SHA256 signed version?