b04d6e6720
Remove SHA1 for certs in prep for Go 1.18 * Remove certs with SHA1 from tests * Use default SHA-256 with PKCS7 in AWS * Update SHA1 deprecation note Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
5 lines
424 B
Plaintext
5 lines
424 B
Plaintext
~> **Note**: This engine can use external X.509 certificates as part of TLS or signature validation.
|
|
Verifying signatures against X.509 certificates that use SHA-1 is deprecated and is no longer
|
|
usable without a workaround starting in Vault 1.12. See the
|
|
[deprecation FAQ](/docs/deprecation/faq#q-what-is-the-impact-of-removing-support-for-x-509-certificates-with-signatures-that-use-sha-1)
|
|
for more information. |