Wednesday, December 19, 2018
Does Microsoft Dynamics RMS Support SHA-2
Information, Known Issues, and Advice Related to SHA-1, SHA-2 and the Microsoft RMS Point of Sale Software

Most recent information appears first

Windows 10 SHA-1 and SHA-2 Issues

December 15th, 2016 Update:

First Data has communicated that December 28th, 2016 is the deadline for SHA-256 compliance. Retailers using equipment that is not SHA-256 compliant will not be able to process transactions if using First Data for merchant services after December 28th, 2016.

This has been communicated multiple times to First Data customers but, given the upcoming deadline, we wanted to make sure that this deadline was communicated as many ways as possible.

If you are not sure whether your equipment is SHA-256 compliant, then a call to your First Data salesperson and/or Microsoft Dynamics RMS Partner is highly advised. The good news is that there are several options available to become SHA-256 compliant and still keep using the Microsoft RMS point of sale software. These solutions range from installing separate payment terminals to using the Card Defender EMV solution for Microsoft RMS. Here is a great video showing Microsoft RMS using Card Defender to process EMV/chip card transactions as well as NFC/phone payments: https://www.youtube.com/watch?v=PsjOU6jhFZM

As RITE is one of the largest Microsoft Dynamics RMS Partners in North America, please do contact us at 888-267-7483 if you no longer have an active Microsoft Dynamics RMS Partner and we will be happy to access your situation.

October 4th, 2016 Update:

Heartland has provided an alternate payment processing portal that has corrected the issue. If they have not already been in touch with you to make the necessary changes, please contact them. RITE or your Microsoft Dynamics RMS Partner can also assist with any changes that need to be made.

September 15th, 2016:

Just when everything appeared to be sorted out related to the new SHA-2 security requirement, a recent Windows 10 update has caused some new problems.

Because of this Windows 10 update, error messages may appear in the Microsoft RMS point of sale software in specific situations as noted below:

  • Point of Sale Software: Microsoft RMS

  • Operating System: Windows 10 with September 2016 update installed

  • Website for credit card processing is not SHA-2 compliant

  • Merchant Services Company: Heartland

Other Notes:

  • At this point, the issue is specific to Heartland as Mercury and TSYS appear to be functioning normally

  • Heartland does not have any information on when they expect the issue to be resolved but we are conversing with them and will update this page when resolution information becomes available

  • This shows how unexpected issues can crop up with anything related to technology so please use this as a reminder to have a point of sale partner/vendor/VAR that you can rely on for ongoing support after your point of sale system is up and running

As this may prevent you from being able to fully tender credit and debit card transactions, the following options are available:

  • Roll back to previous Windows 10 build

  • Disable new updates to Windows 10 until the issue is tested as resolved

  • You may be able to process credit and debit card transactions manually but note that you will be paying a much higher percent for "hand keying" a credit or debit card transaction (easily 4% to 4.5%)
  • Consider using Card Defender for Microsoft RMS which allows full EMV/Chip card processing within RMS as well as NFC payments like Apple Pay and Google Wallet. Card Defender is unique in not charging any additional per transaction fees as well as being processor agnostic (Heartland, First Data and TSYS).  More information on Card Defender can be found at http://www.payconfident.com/

  • You can also contact us at 888-267-7483 or sales@rite.us for further information or assistance

Microsoft RMS and SHA-1/SHA-2


July 2016:

Recently banks and card processors have been sending out notices similar to this:

July 31, 2016 - Secure Hash Algorithm (SHA)-1 is being changed to SHA-2 to maintain the safety and security of sensitive data.  Attempts to process using incompatible equipment or applications will fail when certificates are replaced.

Microsoft's official response is "Processing credit card sales through RMS uses a portal that is supplied by your processor. As long as your processor's portal is using SHA-2 then your system is compliant."  From our research newer versions of Windows, like 7, 8, and 10 have these certificates already installed.  If you're using an outdated version of Windows like XP, you will likely have issues with these new certificates.


Given how quickly people figure out how to compromise credit card information and similar data, It is likely that we will be seeing new credit card processing security requirements coming out each year.

You can learn more about SHA-2 by visiting https://en.wikipedia.org/wiki/SHA-2



Microsoft Dynamics Retail Management System

Home | POS Systems | Plug-In Directory | Custom DevelopmentSupport | Partners | About Us | Contact Us | Request Information

RITE - Retail Information Technology Enterprises - Experts in Retail Point of Sales Technology
Phone - St.Cloud, MN area: 320-230-2282, Minneapolis area: 612-216-1480 Chicago, IL area: 312-841-RITE (7483) Idaho/Utah: 208-994-9404
Toll free: 1-888-267-RITE (7483)
© RITE Enterprises, Inc 2006-2018 - All rights reserved