SHA-2 support in Microsoft Windows for installing Kaspersky business solutions

 

General articles: Software compatibility

 
 
 

SHA-2 support in Microsoft Windows for installing Kaspersky business solutions

Back to "Software compatibility"
Latest update: May 11, 2022 ID: 15728
 
 
 
 

This article concerns:

  • Kaspersky Security 11.0.1 for Windows Server (version 11.0.1.897)
  • Kaspersky Endpoint Agent 3.10 MR3 and later
  • Kaspersky Industrial CyberSecurity for Nodes 3.0 and later
  • Kaspersky Embedded Systems Security 3.1 and later
 
 
 
 

Microsoft stops the support of root certificates that allow signing the code of the drivers that works on the operating system kernel level. Now drivers are signed with the WHQL (Windows Hardware Quality Lab) signature which is based on the SHA-2 (SHA-256) algorithm. Verification of such a signature requires SHA-2 support in the operating system.

Before installing a Kaspersky business solution on a protected device with an operating system from the list below, please make sure that the system has updates that bring SHA-2 support. If SHA-2 is not supported, installation will be interrupted. You can install the required updates for SHA-2 support and reinstall the application.

The table below contains a list of supported Microsoft Windows OS versions that require updates for SHA-2 support:

Operating systemUpdate
Windows 7 Professional/Enterprise/Ultimate (32/64 bit)KB3033929 or KB4474419
Windows Embedded Standard 7 SP1 (32/64 bit)KB3033929 or KB4474419
Windows Embedded POSReady 7 SP1 (32/64 bit)KB3033929 or KB4474419
Windows Embedded Standard/Enterprise 7 SP1 (32/64 bit)KB3033929 or KB4474419
Windows Vista SP2 (32/64 bit)KB4474419
Microsoft Windows Server 2008 Standard/Enterprise/Datacenter SP2 or laterKB4474419
Microsoft Windows Server 2008 Core Standard/Enterprise/Datacenter SP2 or later (32/64 bit)KB4474419
Windows 2008 Server Microsoft Remote Desktop Services SP2KB4474419
Microsoft Small Business Server 2008 SP2 Standard/Premium or later (64 bit)KB4474419
Windows Server 2008 R2 Foundation/Core/Standard/Enterprise/Datacenter SP1 or later (64 bit)KB3033929 or KB4474419
Windows Hyper-V Server 2008 R2 SP1 or later (64 bit)KB3033929 or KB4474419
Windows 2008 Server R2 Microsoft Remote Desktop ServicesKB3033929 or KB4474419
Microsoft Small Business Server 2011 Essentials/Standard SP1 or later (64 bit)KB3033929 or KB4474419
Microsoft Windows MultiPoint Server 2011 (64 bit)KB3033929 or KB4474419

This table does not include the operating system updates with SHA-2 support that were published after the release of Kaspersky business solutions mentioned in this article.

 
 
 
 
Was this information helpful?
Yes No
Thank you
 
 
 

Back to "Software compatibility"
 
 

 
 

How can we improve this article?

Your feedback will be used for content improvement purposes only. If you need assistance, please contact technical support.

Submit Submit

Thank you for your feedback!

Your suggestions will help improve this article.

OK