Environment
Novell ZENworks Configuration Management (Appliance) 2017 Installation - Server
Situation
When installing ZENworks Appliance 2017, it offers the possibility to create a CSR (Certificate Signing Request) which can then be used in issuing Service Certificates by an external Certificate Authority. This CSR issued in the current ZENworks Appliance 2017 version is based on SHA1 (sha1WithRSAEncryption) signature algorithm in stead of SHA256 (sha256WithRSAEncryption) which is common practice in current IT environments.
Resolution
This issue has been fixed in ZENworks Appliance 2017 Update 1.
For current ZENworks Appliance 2017 version where the issue appears, an official FTF (field test file) has been made available by Engineering. Please contact Micro Focus Customer Care for the Field Test File.
For current ZENworks Appliance 2017 version where the issue appears, an official FTF (field test file) has been made available by Engineering. Please contact Micro Focus Customer Care for the Field Test File.
Cause
SHA1 algorithm is used by ZENworks Appliance2017 to create CSR.
Additional Information
Workaround:
A CSR with SHA256 algorithm format can be created manually with OpenSSL command in a Linux server:
"openssl req -out zenworks.csr -new sha256"
A CSR with SHA256 algorithm format can be created manually with OpenSSL command in a Linux server:
"openssl req -out zenworks.csr -new sha256"