topic Can I include an intermediate certificate when signing an Add-In? in ArcObjects SDK Questions https://community.esri.com/t5/arcobjects-sdk-questions/can-i-include-an-intermediate-certificate-when/m-p/247539#M6408 <HTML><HEAD></HEAD><BODY><SPAN>Hello there.</SPAN><BR /><BR /><SPAN>I am trying to sign my Add-In by ESRISignAddIn.exe.</SPAN><BR /><BR /><SPAN>The problem is that our code-signing certificate is issued by an intermediate certificate, "Thawte Code Signing CA - G2". If this intermediate certificate is not installed on the target computer, then the ESRI ArcGIS Add-In Installation Utility does not check the checkbox for "Source is trusted". I can tell our costumers they must install the intermediate certificate, but that's cumbersome. </SPAN><BR /><BR /><SPAN>So I wonder, is it possible to include the intermediate certificate when signing the Add-In? If I had used signtool instead of ESRISignAddIn, I understand that it would have been possible to do so, for example by doing </SPAN><BR /><BR /><SPAN>signtool.exe sign /f myCertificate.pfx /ac thawte-intermediate-ca.cer /p myPassword /t </SPAN><A href="http://timestamp.verisign.com/scripts/timstamp.dll">http://timestamp.verisign.com/scripts/timstamp.dll</A><SPAN> myApplication.exe</SPAN><BR /><BR /><SPAN>Source: </SPAN><A href="http://codingexpedition.wordpress.com/2011/04/21/thawte-code-signing-pfx/">http://codingexpedition.wordpress.com/2011/04/21/thawte-code-signing-pfx/</A></BODY></HTML> Tue, 21 May 2013 06:47:17 GMT MikaelRittri 2013-05-21T06:47:17Z Can I include an intermediate certificate when signing an Add-In? https://community.esri.com/t5/arcobjects-sdk-questions/can-i-include-an-intermediate-certificate-when/m-p/247539#M6408 <HTML><HEAD></HEAD><BODY><SPAN>Hello there.</SPAN><BR /><BR /><SPAN>I am trying to sign my Add-In by ESRISignAddIn.exe.</SPAN><BR /><BR /><SPAN>The problem is that our code-signing certificate is issued by an intermediate certificate, "Thawte Code Signing CA - G2". If this intermediate certificate is not installed on the target computer, then the ESRI ArcGIS Add-In Installation Utility does not check the checkbox for "Source is trusted". I can tell our costumers they must install the intermediate certificate, but that's cumbersome. </SPAN><BR /><BR /><SPAN>So I wonder, is it possible to include the intermediate certificate when signing the Add-In? If I had used signtool instead of ESRISignAddIn, I understand that it would have been possible to do so, for example by doing </SPAN><BR /><BR /><SPAN>signtool.exe sign /f myCertificate.pfx /ac thawte-intermediate-ca.cer /p myPassword /t </SPAN><A href="http://timestamp.verisign.com/scripts/timstamp.dll">http://timestamp.verisign.com/scripts/timstamp.dll</A><SPAN> myApplication.exe</SPAN><BR /><BR /><SPAN>Source: </SPAN><A href="http://codingexpedition.wordpress.com/2011/04/21/thawte-code-signing-pfx/">http://codingexpedition.wordpress.com/2011/04/21/thawte-code-signing-pfx/</A></BODY></HTML> Tue, 21 May 2013 06:47:17 GMT https://community.esri.com/t5/arcobjects-sdk-questions/can-i-include-an-intermediate-certificate-when/m-p/247539#M6408 MikaelRittri 2013-05-21T06:47:17Z