Google is working on phasing out support for all SSL certificates that were issued using SHA-1 hashing algorithm. It will do so by displaying a warning in the new Chrome(TM) browser. These changes are expected to take place in November 2014. Here’s more information directly from Google’s blog.
To help you identify if your site needs a certificate reissued used this tool.
Please keep in mind that SHA-1 root certificates will not be affected by this.
For cPanel/WHM users. There’s currently no way to generate a SHA-2 request unless done from shell. Here’s how to do it from SSH:
openssl req -new -newkey rsa:2048 -nodes -sha256 -out www.mydomain.com.sha256.csr -keyout www.mydomain.key -subj “/C=US/ST=TX/L=USA/O=
Be sure to replace the values in that with the correct ones.
C = 2 character country code
ST = State/Province
L = City/Locality
O = Organization
CN = Common Name (domain name)