SHA-2 signing enforcement on Windows 7 and Windows Server 2008 R2 is almost here!

Published Sep 23 2020 12:51 PM 10.8K Views
Microsoft

The deadline is fast approaching -- we mentioned in a previous blog that any customers running Microsoft Defender for Endpoint on Windows 7 or Windows Server 2008 R2 must take the following actions or their agents will stop sending data:

 Before November 2, 2020, do the following: 

  1. Install the SHA-2 signing Windows updates as described in 2019 SHA-2 Code Signing Support requirement for Windows and WSUS
  2. Update to the latest version of the Log Analytics Windows agent (Windows 64-bit agent or Windows 32-bit agent)

You can find the relevant devices in your environment using an advanced hunting query. You can use the following that is available on GitHub: https://github.com/anthonws/MTPAHQueries/blob/master/Log_Analytics_Agent_SHA2_Support.txt

 

Learn more information about SHA-2 signing enforcement in the documentation.

 

For any other questions, please feel free to reach out Microsoft Defender for Endpoint Support.  

 

Thank you, 

The Microsoft Defender for Endpoint team 

 

 

 

 

 

Version history
Last update:
‎Sep 23 2020 12:51 PM
Updated by: