ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

How can I obtain and validate the checksum for a UIM probe

book

Article ID: 238207

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM) DX Unified Infrastructure Management (Nimsoft / UIM) CA Unified Infrastructure Management SaaS (Nimsoft / UIM) Unified Infrastructure Management for Mainframe

Issue/Introduction

I am working with a customer that requires validating the software we are deploying hasn't been modified. The do this by checking the release notes or other Broadcom provided documentation that contains the checksum for the software.

Cause

- Security policy

- Some customer require software validation (pre and post-download)

Environment

  • Release : 20.3
  • Component : UIM - CABI
  • UIM 20.3 or higher

Resolution

If the checksums are not provided or simply not currently available via the Support site, e.g., https://support.nimsoft.com in the Release Notes, please contact Broadcom Support for the checksums.

Once you obtain the correct checksums, you can validate them.

On Windows 10 you can use the certutil utility to display and compare the hash, for example:

C:\>certutil -hashfile C:\FCIV\cabi-4.3.0.zip SHA1
SHA1 hash of C:\FCIV\cabi-4.3.0.zip:
29fc8e9efaa1747dfdd62bde41f4c03b705c1c55
CertUtil: -hashfile command completed successfully.

C:\>certutil -hashfile C:\FCIV\cabi-4.3.0.zip SHA256
SHA256 hash of C:\FCIV\cabi-4.3.0.zip:
5b39d099001686f1cfc08f83fd04955aea67b8acf5563cc118fd152bd2a6b77b
CertUtil: -hashfile command completed successfully.

You can use certutil to calculate a checksum of any file.

If you want to verify the checksum against a different algorithm such as SHA512 or SHA256, all you need to do is replace MD5 in your command with the desired algorithm.

Hash algorithm options for certutil include: MD2 MD4 MD5 SHA1 SHA256 SHA384 SHA512

How to verify MD5 checksum of files
Once you’ve got the checksum value, it is time to verify it. If you received this file from a company, friend, or over email, you can ask the sender for checksum value. If both the values match, your file has not been tampered with or distorted during transmission. If you downloaded this file from a website, you can look on the download page for checksums mentioned by the developer.

C:\>certutil -hashfile C:\FCIV\cabi-4.3.0.zip md5
MD5 hash of C:\FCIV\cabi-4.3.0.zip:
895fcdb2a9fad2440477fc615dc4647e
CertUtil: -hashfile command completed successfully.

Additional Information

You may also choose to search the web, find and download the unsupported utility "Microsoft File Checksum Integrity Verifier V2.05."

//
// File Checksum Integrity Verifier version 2.05.
//
Usage:  fciv.exe [Commands] <Options>

Commands: ( Default -add )

        -add    <file | dir> : Compute hash and send to output (default screen).
                dir options:
                -r       : recursive.
                -type    : ex: -type *.exe.
                -exc file: list of directories that should not be computed.
                -wp      : Without full path name. ( Default store full path)
                -bp      : specify base path to remove from full path name

        -list            : List entries in the database.
        -v               : Verify hashes.
                         : Option: -bp basepath.

        -? -h -help      : Extended Help.

Options:
        -md5 | -sha1 | -both    : Specify hashtype, default md5.
        -xml db                 : Specify database format and name.

To display the MD5 hash of a file, type fciv.exe filename

C:\FCIV>fciv.exe C:\FCIV\cabi-4.3.0.zip
//
// File Checksum Integrity Verifier version 2.05.
//
895fcdb2a9fad2440477fc615dc4647e c:\fciv\cabi-4.3.0.zip