This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Change OTP tokens from SHA-1 to SHA-256

Hi Everyone,

I want to know if there will be effect on existing users or connection using SHA1 generated tokens if it is change to a more secured Hash algorithm (SHA256 and SHA512)?

Setup s in production and it is applied to OTP facilities for User Portal, IPsec Remote Access, SSL VPN Remote Access and Hotspot

Regards



This thread was automatically locked due to age.
Parents
  • FormerMember
    +1 FormerMember

    Hi ,

    Thank you for reaching out to Sophos Community.

    Changing the Hash algorithm to SHA256 or SHA512 would not affect existing OTP users as their tokens were generated using the SHA1 algorithm. New OTP tokens will be generated with new configured Hash algorithm. Here is a snapshot for reference.

Reply
  • FormerMember
    +1 FormerMember

    Hi ,

    Thank you for reaching out to Sophos Community.

    Changing the Hash algorithm to SHA256 or SHA512 would not affect existing OTP users as their tokens were generated using the SHA1 algorithm. New OTP tokens will be generated with new configured Hash algorithm. Here is a snapshot for reference.

Children