Article ID: 124821, created on Mar 12, 2015, last review on Sep 22, 2016

  • Applies to:
  • Plesk 12.5 for Linux
  • Plesk 12.0 for Linux
  • Plesk 11.0 for Linux
  • Plesk 11.5 for Linux


How to allow SHA256 (SHA-2) for Certificate Signing Request?


Generation of Certificate Signing Request with SHA256 (SHA-2) algorithm is implemented in Plesk 12.5 by default. For more information visit Plesk 12.5 release notes.

List of known browsers, mobile devices, and servers supporting SHA-256 can be obtained from SHA-256 compatibility article.

To check if the website is using SHA1 or SHA2 use the following command:

echo | openssl s_client -connect -servername | openssl x509 -text | grep 'Signature Algorithm'

The output for SHA1:

Signature Algorithm: sha1WithRSAEncryption

The output for SHA2:

Signature Algorithm: sha256WithRSAEncryption

Additional information

For Plesk 12.0 and earlier version, refer to:

123904 [How to] Change signature algorithm in SSL certificate signing request from SHA-1 to SHA-2?

Search Words

How to we change the default to be SHA-2/SHA256




csr SHA-2 Compatibility


CSR sha256

a914db3fdc7a53ddcfd1b2db8f5a1b9c 56797cefb1efc9130f7c48a7d1db0f0c 01bc4c8cf5b7f01f815a7ada004154a2 29d1e90fd304f01e6420fbe60f66f838 0a53c5a9ca65a74d37ef5c5eaeb55d7f aea4cd7bfd353ad7a1341a257ad4724a 2a5151f57629129e26ff206d171fbb5f e335d9adf7edffca6a8af8039031a4c7 742559b1631652fadd74764ae8be475e

Email subscription for changes to this article
Save as PDF