0
Is there a built-in or third party solution for Windows Server to use MD5 certificate NTP source validation/authentication?
If it is built-in, what version of Windows Server and what is the feature called etc.?
(I can't find it so far.)
Recommended third party solutions?
HerbM
Posted 2017-04-10T16:01:11.987
Reputation: 268
1All supported versions of Windows no longer trust MD5 certificates. You do understand, that MD5 certificates are not secure, right? All of the major browsers also do not support them, including the mobile variants, on all mobile platforms. – Ramhound – 2017-04-10T16:03:12.600
Better than nothing, but is there are secure NTP client whether this or something else? Any help appreciated. Company has new NTP server and this is what it needs. – HerbM – 2017-04-10T21:07:45.430
1Windows has actively not trusted MD5 certificates for 4 years. Are you 100% sure, there is no possible way, to generate SHA1 certificate instead? Even then you are looking at SHA1 certiicates to be blocked by the end of 2017. – Ramhound – 2017-04-10T21:12:32.510
I need to either offer the methods, or tell them it cannot be done (with existing tools). Or present a better way. The only thing that might make sense that has occurred to me so far is: Certificate IPSec (not VPN). – HerbM – 2017-04-11T20:17:13.527