right and our certificate authority uses SHA-256 and we ran into an isuse on an srx device some time aog where we just created the csr as we knew how and turned out it created it with default SHA-1 so we had to go back and re-do it and this time force it to use sha-256. JTAC tells me that SHA 256 isnt supported but i wanted to see if anyone here had any other insight or info
thanks