I have been seeing people complaining about new features happening after browser updates and after we have searched at TechNet forums. We went to LATAM-PTS a channel for MSFT Partners who help us on delivering projects and this is what we have for this moment.
There is no feature or recent changes in Exchange 2013 (CU12) or Exchange 2016 that allow us to request an Exchange Certificate with SHA256 and all requests done are still bringing SHA1 hash algorithm.
He have tested Exchange (CU10, CU11 and CU12) and Exchange 2016 RTM and (CU01).
Requesting Exchange Certificate
New-ExchangeCertificate āServer cas1 āGenerateRequest āFriendlyName Exchange13COMPANY āPrivateKeyExportable $true āSubjectName āc=BR, s=DF, l=BRASILIA, o=COMPANY, ou=ITPRO, cn=mail.domain.comā āDomainName Ā mail.domain.com,mail.domain.local,autodiscover.domain.com,domain.com āRequestFile ā\\cas1\temp\cert\CertRequest.reqā
Validating certificate request content
Copy and paste the CertRequest.req at the following site to validate all information
https://cryptoreport.websecurity.symantec.com/checker/views/csrCheck.jsp
The solution we have announced on internet is the following
http://www.workingsysadmin.com/renewing-exchange-2013-certificates-sha-256-style/
Looking for more Exchange updates and upgrades information?
https://technet.microsoft.com/en-us/library/hh135098(v=exchg.150).aspx
Once again, thank you.
Thiago Beier
Thiago Beierš 