- Revenera Community
- :
- InstallShield
- :
- InstallShield Forum
- :
- Sectigo Code signing
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Subscribe
- Mute
- Printer Friendly Page
- Mark as New
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
Sectigo Code signing
In such a large community which is Live for so many years, there is no one using Sectigo code signing successfully ?
If there is one - Kindly tell me - what is the timestamp server you are using in Install shield ?
- Mark as New
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
Can you try the below time stamp server.
Reference : https://sectigo.com/faqs/detail/Signing-with-an-Extended-Validation-Code-Signing-Certificate/kA03l000000c4TX
- Mark as New
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
simply http://timestamp.sectigo.com does not work.
It even stops me in signing.
If I say -
<DigitalSignature TimestampRFC3161 = "http://timestamp.sectigo.com"/>
Then it allows me to sign the files - but does not time stamp.
I believe, if the above statement can be modified to do timestamp also - many will be benefited.
For the time being - I do time stamping of the setup.exe outside using signtool.
One need to also be aware that the manifest files should have sha256 instead of sha1 - whether it is IS manifests or application manifests.
Hope this will help others.