Windows 10 -Using Remote Desktop Services with a SHA256 (SHA-2)? How?

Hello,
I've searched the internet high and low to find the answer to this problem and have not come up with much.

I have Windows 10 Professional and I run a remote desktop protocol in order to access my PC remotely. The self-signed certificated which is auto-generated by Windows (in order to support the TLS encryption) is SHA1. I work in the security industry and I understand that SHA1 is phasing out.

What is the process to upgrade this auto-generated certificate so that it will use SHA256? The closest article I've been able to find is here: https://support.microsoft.com/en-us/kb/2001849, but it discusses replacing the RDP certificate with a custom SHA1 cert: it says nothing about SHA2.

All the articles I can find about this refer to Windows Server 2008/2012. There is NOTHING about Windows 10.

Does anybody know how to accomplish this?

Thanks
Bob

Well it looks like I'm going to answer my own question.
Sometime between 9/7/16 and 9/30/16, Microsoft released an update which apparently automatically corrected this.

I checked and my RDP cert is now SHA256 :)

Thanks
Bob

Hi

I have the same issue, I was wondering if you may be able to give me a list of the hotfixes installed on your server during the time you mentioned so I can compare with ours? I can't find any info on recent Microsoft hotfixes that fixes this issue :-(

Thanks.

Hello,
To clarify, this is not a Server edition, this is Windows 10 Pro.

So I'm not sure which fixed it but one of two changes were made around that time:

1) there was an extensive cumulative update at the end of September which I downloaded and installed

2) towards the begging of October I got a new PC so I did a clean install, using a Windows 10 boot CD. I installled all the latest updates right away.

Unfortunately I did not check the status of the cert until shortly before I posted my update here...

Hope that gives some guidance.

Good luck!
Bob