Stack Overflow
Stack Overflow

Questions tagged [signtool]

The SignTool tool is a command-line tool that digitally signs files, verifies signatures in files, or time stamps files.

The SignTool tool is a command-line tool that digitally signs files, verifies signatures in files, or time stamps files. For information about why signing files is important, see Introduction to Code Signing. The tool is installed in the \Bin folder of the Microsoft Windows Software Development Kit (SDK) installation path.

SignTool is available as part of the Windows SDK, which you can download.

342 questions
389
votes
22 answers

Signtool error: No certificates were found that met all given criteria with a Windows Store App?

I'm trying to sign a Windows 8 appx package with a pfx file I have. I'm using a command like so: signtool.exe sign /fd sha256 /f "key.pfx" "app.appx" And from this, I get: SignTool Error: No certificates were found that met all the given…
Earlz
  • 62,085
  • 98
  • 303
  • 499
156
votes
8 answers

Visual Studio SignTool.exe Not Found

I have completed an application I have made in Visual Studio 14.0, but when I tried to publish the program, I get an error as Visual Studio cannot find 'SignTool.exe'. I have searched my Hard drive a few times for this but it is nowhere on my PC.…
Catquatwa
  • 1,729
  • 3
  • 12
  • 15
129
votes
17 answers

How to install SignTool.exe for Windows 10

How to install SignTool.exe in Visual Studio 2015 for Windown 10? I tried to build my project but the program threw an error : Error An error occurred while signing: SignTool.exe not found.
Loint
  • 3,560
  • 7
  • 26
  • 46
64
votes
2 answers

The UAC prompt shows a temporary random Program Name for msi, can the correct name be displayed?

I'm building an MSI installer for windows and sign the installer using signtool. When I run the .msi to test it, the UAC (User Account Control) prompt shows up to ask me if I want to allow the installation to proceed. That's fine, but the prompt…
Scott Langham
  • 58,735
  • 39
  • 131
  • 204
54
votes
7 answers

http://timestamp.verisign.com/scripts/timstamp.dll not available

When the following URL is not available, what other timestamp URL can I use in my setup authoring tool? The specific error I get is: SignTool Error: The specified timestamp server either could not be reached or returned an invalid…
abenci
  • 8,422
  • 19
  • 69
  • 134
46
votes
7 answers

Path to SignTool.exe or "Windows Kits" directory when using Visual Studio 2012

How do you get the path to SignTool.exe when using Visual Studio 2012? In Visual Studio 2010, you could use
Ryan
  • 23,871
  • 24
  • 86
  • 132
41
votes
4 answers

signtool fail with inno setup : 0x80070003 - "Store IsDiskFile() failed"

I'm getting a weird error whiles signing my software. I'm using inno setup 4.5.2. Running Sign Tool command: signtool.exe sign /a /f cert.pfx /v /t "http://timestamp.verisign.com/scripts/timstamp.dll" /p pwd /d "Setup Label"…
draeron
  • 1,218
  • 1
  • 10
  • 13
34
votes
1 answer

Why's My Root Certificate Not Trusted?

I have issued myself a Code Signing certificate from a certificate server. I have also issued myself the root certificate from the same certificate server. The root certificate exists in both the Current User and Local Computer certificate stores…
Alexandru
  • 12,264
  • 17
  • 113
  • 208
28
votes
6 answers

Code signing with signtool fails due to private key filter

While trying to sign some installer created by the company I am working for I encountered an error, which I have not been able to solve. I am using the same certificate which has been used on another machine (Win7) successfully in the same way for…
Paul Kertscher
  • 9,416
  • 5
  • 32
  • 57
28
votes
7 answers

signtool failing to dual sign SHA2 and SHA1 with timestamps

We need to dual sign our binaries with SHA1 and SHA2 using signtool.exe, our certificate supports 256-bit SHA2. Using the Windows 8 SDK's signtool: e.g.: signtool.exe sign /as /fd sha256 /t http://timestamp.verisign.com/scripts/timstamp.dll /f…
JosephA
  • 1,187
  • 3
  • 13
  • 27
22
votes
2 answers

How do I securely configure a CI server to digitally sign binaries?

There are many sites that explain how to run signtool.exe on a .pfx certificate file, which boil down to: signtool.exe sign /f mycert.pfx /p mypassword /t http://timestamp.server.com \ /d "My description" file1.exe file2.exe I have a continuous…
gregmac
  • 24,276
  • 10
  • 87
  • 118
18
votes
6 answers

Automating code signing with signtool.exe, but without storing the certificate or password

I have a C#/.NET 4.5 x64 project in Visual Studio 2013. More than one developer works on this project, so the code is managed in Git. I'm signing the compiled .dlls and .exe with signtool.exe. My company bought a code signing certificate, and if I…
user3466413
  • 805
  • 1
  • 7
  • 16
17
votes
1 answer

Signing an appxbundle using CryptUIWizDigitalSign API

I'm facing a rather interesting issue in regards to Authenticode signing an UWP appxbundle file. Some background: The client provided us with a SafeNet USB token containing the signing certificate. The private key is not exportable, of course. I…
mlinka
  • 195
  • 1
  • 8
17
votes
2 answers

UWP appx package Signtool "Error: SignerSign() failed." (-2147024885/0x8007000b)

EDIT Event log error was this: error 0x8007000B: The app manifest publisher name (CN=...) must match the subject name of the signing certificate (CN={19BE29DF-4812-4F2E-8FC1-A138B146946A}). The command below now seems to work. So either user…
dkackman
  • 15,179
  • 13
  • 69
  • 123
16
votes
1 answer

signtool with certificate stored in local computer

I cant get signtool to find my certificate. The pfx file works for signing, i've checked that by specifying the pfx file directly together with the password. But due to other people having access to the code repository i really dont want to store…
sundown
  • 663
  • 1
  • 8
  • 19
1
2 3
22 23