Microsoft has released a critical update as of August 14, 2012, which will end support for certificates using the RSA algorithm that has key lengths less than 1024 bits. Shorter keys have been deemed more vulnerable to brute force attacks due to continued advances in computer processing capabilities. After applying Microsoft’s update, all certificates with key lengths less than 1024 bits will be treated as invalid. This update does not apply to Windows 8, 8.1 or Windows Server 2012 because these operating systems already include the functionality to block the use of weak RSA keys that are less than 1024 bits long.
Users will likely experience a security certificate warning and then the browser will not be able to "Continue to this website anyway" or be sent to an error about "Page cannot be displayed."
Update: In October 2014, Mozilla Firefox v33 has begun to block keys less than 1024 bits in length too. Security related release notes for Firefox v33 refer to RSA certificates using weak signatures less than 1024-bit are no longer accepted section once you access the link. Users will see an error such as "The key does not support the requested operation. (Error code: sec_error_invalid_key)."
Product Lines
The following products Network Management Card devices and product lines are affected.
| Product | NMC AOS Version |
| AP9617 | All Versions (1.X, 2.X, 3.X) |
| AP9618 | All Versions (1.X, 2.X, 3.X) |
| AP9619 | All Versions (1.X, 2.X, 3.X) |
| Rack PDU (AP78XX, AP79XX) | All Versions (1.X, 2.X, 3.X) |
| Rack ATS (AP77XX) | All Versions (1.X, 2.X, 3.X) |
| Environmental Products (AP9320, AP9340, NetBotz 200) | All Versions (1.X, 2.X, 3.X) |
| S20/S20BLK A/V Power Conditioner with Battery Back Up | All Versions (1.X, 2.X, 3.X) |
| Other NMC1 product groups not listed | All Versions (1.X, 2.X, 3.X) |
Environment
All Network Management Card 1 devices listed above currently configured for HTTPS mode using the default 768 bit auto-generated self-signed SSL certificate.
Cause
All Schneider Electric Network Management Card 1 products have the capability of supporting SSL for secure web connections. All products listed above with any firmware version, auto-generates self-signed SSL Certificates 768 bits in length when HTTPS mode is enabled unless another user certificate has been pre-loaded.
Please note: Network Management Card 2 products are not affected.
Resolution
Refer to the currently available workaround options listed below:
- Upload a 1024 bit SSL Certificate to the affected products - the aforementioned products all allow the user to create and upload their own 1024 bit SSL Certificate with the help of the APC Security Wizard tool, available on apc.com for download with the part number SFNMCSECWIZ104. A step by step guide is available in the Network Management Card 1's Security Handbook
- Use a different web browser (such as Chrome, Firefox, etc)
- Update: In October 2014, Mozilla Firefox v33 has begun to block keys less than 1024 bits in length, too. Security related release notes for Firefox v33 refer to RSA certificates using weak signatures less than 1024-bit are no longer accepted section. One possible option is to downgrade Firefox.
- Uninstall the patch
- Do not apply the patch
Released for: Schneider Electric Saudi Arabia
Need help?
Product Selector
Quickly and easily find the right products and accessories for your applications.
Get a Quote
Start your sales enquiry online and an expert will connect with you.
Where to buy?
Easily find the nearest Schneider Electric distributor in your location.
Help Centre
Find support resources for all your needs, in one place.
我们如何通过全面的企业可持续发展战略来创建一个可持续和包容性的世界?
施耐德电气以脱碳目标为核心,遵循企业可持续发展战略,通过数字化转型和新一代自动化,引领可持续发展企业。作为一家影响力公司,施耐德电气致力于在气候、资源、性别多元化和包容性等各方面实现可持续发展。施耐德电气正引领净零转型,并准备通过帮助合作伙伴制定创新的企业可持续发展战略,充分利用可用能源、资源和人员,从而为其合作伙伴桥接业务韧性和可持续性。施耐德电气可持续发展影响计划(SSI)专注于在2025年实现环境、社会和治理(ESG)目标以及碳中和,推动我们应对气候变化和社会不平等的努力,并履行本地承诺。我们与客户和供应商合作,部署能够实现能效和可持续性的服务和解决方案,并推动他们减少碳排放。持续的投资,开发可靠的绿色能源,以及符合碳承诺的短期和长期碳中和运营,这些创新产品组合能够帮助我们迈向气候积极世界。
我们致力于通过高度社会化、治理和道德标准维护客户的信任,以防止生物多样性的丧失,从而保护地球上的自然生态系统和资源。我们可以提供平等的机会,并确保大家受到独特的重视以及包容的工作环境。我们相信促进每一代人的学习、提高技能和发展,为下一代做好准备。我们赋能本地社区,推进当地举措,赋能使个人和合作伙伴共同实现可持续发展。我们的专家精通全球、企业的可持续发展计划,包括碳减排计划、能效、可再生能源和供应链计划,助力客户能够走向净零排放和气候领导力的道路。