AlexPage wrote: ↑

Wed Aug 09, 2023 10:09 pm

Any updates on this?
We need to know whether we can use a digicert Cloud HSM EV Cert before we order one.
Not worried about password prompts, just need to ensure we acan use it before forking out the cash!

Hi, we are also stuck in same problem. So, is there any workaround you people are following?

Thanks,
Mustafa

Hi, any update on this feature? Any ETA when it would be available?

Hello Mustafa,

This is still on our TODO list. However, starting with Advanced Installer version 21.0, we will be adding a How-To article on how to use our Custom sign tool option from the Digital Signature page to configure AI to sign the packages using the new tools (Keylocker).

Advanced Installer v21.0 release is scheduled for next week. We will let you know when the article is available.

Best regards,
Liviu

Hi,
I see that v21 of the installer was released yesterday.
Any idea when the How-To article for KeyLocker will be made available?

Hello and welcome to our forums,

Great news! The How-To article on using KeyLocker with Advanced Installer is now available online. You can access it by following this link: How to sign your package with Azure Code Signing or Digicert Keylocker


We hope you find this resource helpful. If you have any further questions or need additional assistance, please don't hesitate to reach out.

Best regards,
Liviu

I've found that signing can be done with KeyLocker-hosted EV certificates, without specifying a custom signing tool or using Advanced Installer >=21.0.

If you set up the DigiCert KSP library as per the DigiCert documentation, and store your credentials for accessing your certificate in the Windows Credential Store using the SMCTL CREDENTIALS SAVE command, then signing works exactly as before. You can use the built-in signing tool in Advanced Installer 20.9, select the certificate from the drop-down list, and it will happily sign everything. With the DigiCert client stuff set up correctly, the only thing I had to change in my installer project was to select the new certificate in the drop-down list.

Hello Andy,

Thank you for your followup on this!

I am sure this will be of help for further users in this specific scenario.

Best regards,
Catalin

any updates? I can't get advanced installer and DigiCert to work and sign our exe with msi imbedded WE NEED AN ASNWER.!

Hello,

Please note I have replied to your main thread.

issues with advanced installer and DigiCert signing via azure. pipelines

Best regards,
Catalin