13.8.8. Signing Algorithm Constraint

The Signing Algorithm constraint checks if the signing algorithm in the certificate request satisfies the criteria set in this constraint.

Table 13.25. Signing Algorithms Constraint Configuration Parameters

Parameter Description
signingAlgsAllowed Sets the signing algorithms that can be specified to sign the certificate. The algorithms can be any or all of the following:
  • MD2withRSA
  • MD5withRSA
  • SHA1withRSA
  • SHA256withRSA
  • SHA512withRSA
The algorithm can also be set to -, which means the server picks the best available signing algorithm that is compatible with the key type (RSA).