cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
peter_andersso
Level 3

Installshield 2022 - DigiCert Keylocker signing

Jump to solution

Hi,

I am trying to sign my installation files using a DigiCert KeyLocker certificate from
Installshield 2022. I have previously used .pfx certificates without issues. However,
I cannot find how I could use this new kind of certificates based on Cloud signing
och Hardware locks.

I have written a powershell script which can sign the files using DigiCert's smctl
application, but cannot find where to call it in Installshield.

Labels (1)
0 Kudos
(1) Solution

Hi @peter_andersso,

Thank you for your reply.

Yes, this is expected behavior. You would need to upgrade to InstallShield 2023 R2 or InstallShield 2024 R1 to gain access to this new custom signing functionality.

Here is a link to the InstallShield 2023 R2 Release Notes, which clarify the new functionality that you would gain from upgrading to that version:

https://docs.revenera.com/installshield29helplib/rn/Content/helplibrary/New_Features_in_R2.htm#isreleasenotes_4268113285_1354023

Here is a link to the InstallAnywhere 2024 R1 Release Notes, which clarify the new functionality that you would gain by upgrading to that version:

https://docs.revenera.com/installshield/rn/Content/helplibrary/New_Features_in_2024_R1.htm#isreleasenotes_4268113285_1354023

Please let us know if you have any questions or concerns. Thanks!

View solution in original post

0 Kudos
(6) Replies
Revenera_Ian
Revenera Moderator Revenera Moderator
Revenera Moderator

Hi @peter_andersso,

Thank you for your post.

I've included sample InstallShield project settings and a sample PowerShell script for custom signing that will work. It has been tested by our Engineering Team. I attached a screenshot of the InstallShield project settings.

PowerShell Script Called In Custom Signing Type Settings.png

 

 

 




Path: <SystemFolder>\WindowsPowerShell\v1.0\powershell.exe

Arguments: -file "C:\Users\admin\Desktop\step.ps1" -name [filename]

Sample ScriptSigning.ps1

param(
[string]$name
)
cd "C:\Program Files (x86)\Windows Kits\10\bin\10.0.22621.0\x86\"
.\signtool.exe sign /fd SHA256 /debug /f "<ProgramFilesFolder>\TestCA.pfx" /t http://timestamp.digicert.com /p "MyPassword" $name

Could you please give these suggestions a try? Do they work for you?

Please let us know if you have any questions or concerns. Thanks!

0 Kudos

Hi @Revenera_Ian ,

Thank you for the proposed solution. It certainly looks like it would be
a nice solution for my issue, however, I cannot find the signing type
setting in Installshield 2022:

installshield_cert.png

0 Kudos

Hi @peter_andersso,

Thank you for your reply.

Yes, this is expected behavior. You would need to upgrade to InstallShield 2023 R2 or InstallShield 2024 R1 to gain access to this new custom signing functionality.

Here is a link to the InstallShield 2023 R2 Release Notes, which clarify the new functionality that you would gain from upgrading to that version:

https://docs.revenera.com/installshield29helplib/rn/Content/helplibrary/New_Features_in_R2.htm#isreleasenotes_4268113285_1354023

Here is a link to the InstallAnywhere 2024 R1 Release Notes, which clarify the new functionality that you would gain by upgrading to that version:

https://docs.revenera.com/installshield/rn/Content/helplibrary/New_Features_in_2024_R1.htm#isreleasenotes_4268113285_1354023

Please let us know if you have any questions or concerns. Thanks!

0 Kudos

Hi @Revenera_Ian 

I turns out that signing "Basic" installation projects does not seem to
work using this method. It results inte following error:
Invalid arguments passed for custom signing. Failed signing '1C6F.tmp': Error Code -1027

Do you have any workaround for this issue with basic projects?

0 Kudos

Hi @peter_andersso 

Thank you for your reply. Please accept our apologies for the delayed response.

Could you please review the documentation at the following link:

https://community.flexera.com/t5/InstallShield-Knowledge-Base/Configuring-Extended-Validation-EV-Certificate-information-in/ta-p/300389

specifically the Using Custom Signing Type option Section and the Using Custom Signing option to execute batch file Section?

Please give these suggestions a try. Do they work for you?

Please let us know if you have any questions or concerns. Thank you!

0 Kudos

Hi @Revenera_Ian ,
Yes, I have it working in a few projects but it does not work specifically for Basic projects even when I copy-paste the solution. Is this a known limitation in Basic projects?

0 Kudos