Code Signing Help


Microsoft Windows Code Signing

Download the SSL Certificate From Control Center

You will receive an e-mail from Trustwave® with a zip file attached to the e-mail. The filename will be similar to YourCompanyName.zip. Copy this file to your code signing computer and extract the YourCompanyName.p7b file from it.

  1. Launch the Microsoft Management Console application (search for "mmc" in the Windows search feature)
  2. From the File menu, select Add/Remove Snap-in...
  3. Select Certificates in the Available snap-ins table on the left and click the Add > button
  4. Select My User Account in the radio list and click Next.
  5. Click Finish.
  6. Click OK.
  7. Click on Certificates - Current User in the left panel.
  8. Right click on Personal in the center panel and select All Tasks -> Import...
  9. Click Next.
  10. Browse to the downloaded YourCompanyName.p7b file and click Open. Then click Next.
  11. Click Next.
  12. Click Finish.

Signing code with your new certificate

Once you have obtained the certificate, to sign a Windows binary with a certificate provided in CER form (with separate RSA private key) you will need the signtool tool from Microsoft (part of the Windows SDK.)

To sign code:

signtool.exe sign /tr http://timestamp.ssl.trustwave.com /td SHA256 /fd SHA256 binary_to_sign.exe

If you signed an exe you can run it at this time to see the new signature. 


Click the publisher link to see more details.


 
 



Certificate Analyzer

Once you have completed your certificate installation you can use our instant online troubleshooter to verify your installation and help resolve problems.
Certificate Analyzer→

Go Green