I recently acquired an Extended Validation Code Signing Certificate (ev code cert) from sectigo. The Attestation and .CSR files for the certificate were generated using a Yubico 5 FIPS security key. After completing this process, I received a certificate file named "
user.crt".
While I have experience using SignTool for code signing, this has always been in contexts where I had both a .crt and a .pfx file available. However, with the Yubico 5 FIPS, I only have the "
user.crt" file, and I'm uncertain how to proceed for code signing.
Here's the SignTool command I've attempted:
> signtool sign /sha1 <THUMBPRINT> /fd SHA256 /t
http://tsa.safecreative.org C:\path\to\
your_application.exe
Despite having installed the certificate, I encounter the following error message when running the command:
> SignTool Error: No certificates were found that met all the given criteria.
I need expert help to resolve this issue and successfully sign my application using the certificate I've obtained. If you have experience with SignTool, Yubikey, and Sectigo certificates, I'd love to hear from you.
Thank you!
Category: IT & Programming
Subcategory: Web development
What is the scope of the project?: Small change or bug
Is this a project or a position?: Project
I currently have: I have an idea
Required availability: As needed
Roles needed: Developer, Other
Other roles needed: Signtool / Certificate / SSL