I have an Application/Exe file that I'd like to sign so Windows shows it as a trusted source and won't warn the end user about an "Unknown Publisher". I will be getting a certificate to use, however I do not know how I'd implemented this to Sign my Application. My goal here is to sign my Application which can then get shipped to multiple users externally, and not show the usual "Unknown Publisher" popup. Any help would be appreciated.
CodePudding user response:
- Pay the certificate mafia to get a certificate from one of the approved vendors (or look for Authenticode on the CAs website).
- Use signtool.exe from the Windows SDK to sign your executable. Make sure to use a time stamp server so your signature stays valid.
Signing will make the UAC dialog less scary when the publisher can be verified.
Even after doing all of this, Windows SmartScreen might still present the user with a warning. This warning should go away after enough people use your software and signing is supposed to speed this up...