Trying to create a new standalone CA, leveraging the NitroKey with an RSA4096 stored on the HSM2 itself, and then using it to generate a SHA512 cert to deploy the root CA using Windows Server 2025. However, I cannot seem to find a way to have additional options beyond the SHA1, md2, md4 or md5 available.
How do I get SHA512 visible in the Microsoft CA, connecting to the nitrokey HSM via OpenSC when deploying a new standalone root CA, and have the CA configuration wizard leverage the keypair on the HSM2 to proceed with the deployment using SHA512? I’ve installed both the 32 and 64 bit versions of OpenSC (latest version 0.26.1) on the server. Am I missing drivers? or some .conf or .ini configuration which points to a dll somewhere I might have missed?
any suggestions and ideas would be appreciated.
edited for additional clarity.