I recently acquired an Extended Validation Code Signing Certificate (ev code cert) from sectigo. The Attestation and .CSR files for the certificate were generated using a Yubico 5 FIPS security key. After completing this process, I received a certificate file named "user.crt".
While I have experience using SignTool for code signing, this has always been in contexts where I had both a .crt and a .pfx file available. However, with the Yubico 5 FIPS, I only have the "user.crt"
file, and I'm uncertain how to proceed for code signing.
Here's the SignTool command I've attempted:
> signtool sign /sha1 <THUMBPRINT> /fd SHA256 /t http://tsa.safecreative.org
Despite having installed the certificate, I encounter the following error message when running the command:
> SignTool Error: No certificates were found that met all the given criteria.
I need expert help to resolve this issue and successfully sign my application using the certificate I've obtained. If you have experience with SignTool, Yubikey, and Sectigo certificates, I'd love to hear from you.
: IT & ProgrammingSubcategory
: Web developmentWhat is the scope of the project?
: Small change or bugIs this a project or a position?
: ProjectI currently have
: I have an ideaRequired availability
: As neededRoles needed
: Developer, OtherOther roles needed
: Signtool / Certificate / SSL