PLEASE READ Advisory: Kernel memory issue affecting multiple OS (aka F**CKWIT, KAISER, KPTI, Meltdown & Spectre) for the latest updates.
This article explains how to add a critical extension to a newly generated certificate in SafeGuard LAN Crypt Administration 3.80 and above.
The SafeGuard LAN Crypt Administration component can generate self-signed certificates. These certificates can only be used by SafeGuard LAN Crypt. The certificates also have a critical extension to show applications that they must not be used. These are simple certificates (comparable to Class-1 certificates) which comply with the X.509 standard.
In SafeGuard LAN Crypt you can configure whether or not a critical extension is added to a newly generated certificate or not.
Known to apply to the following Sophos product(s) and version(s) SafeGuard LAN Crypt Administration 3.80SafeGuard LAN Crypt Administration 3.90.0
Note: The Microsoft Standard CSP (Microsoft Base CSP) cannot be used.
If you have any questions about the compatibility of other CSPs, please contact the support team.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.