index > ClickOnce and Setup & Deployment Projects > ClickOnce Certificates

ClickOnce Certificates

I have inherited a project that uses clickonce deployment. It is a purely internal application accessed by a limited user base with restricted access. I note that there is a Certificate in the deployment package.

Is this always necessary?

I am concerned that this will become an issue you the IT Operations group, because i assume that this certificate will need to be periodically re-newed, and this appears to require that the project is updated (by the development team) and re-deployed. In the clients that i typcally work for they are tight on governance and this will require change management with non-trivial cost.

Is this an issue for other people?

Have i miss-understood something?

regards

Paul

Paul Durdin Thursday, October 01, 2009 6:48 AM

Is the certificate a purchased certificate, like from Verisign, or was it created in Visual Studio?

RobinDotNet

Click here to visit my ClickOnce blog!

RobinDotNet Thursday, October 01, 2009 7:57 AM

I believe that it was created within VS - it has the original developers name in it!

Paul

Paul Durdin Thursday, October 01, 2009 10:55 AM

When the certificate expires, the users will still be able to install the application.

If you are targeting .NET 3.5 and doing automatic updates, you can simply create a new certificate and deploy.

In most other conditions, you will have to extend your certificate. If you were using a purchased certificate and not targeting .NET 3.5 and doing automatic updates, your customers would have to uninstall and reinstall the application.

Here is a blog entry on this (I'm going to be updating this soon; I have a new version that includes .NET 4.0):

http://robindotnet.wordpress.com/2009/03/30/clickonce-and-expiring-certificates/

RobinDotNet

Click here to visit my ClickOnce blog!
Microsoft MVP

Proposed As Answer byRobinDotNetMVP, ModeratorSunday, October 04, 2009 6:39 PM

RobinDotNet Thursday, October 01, 2009 7:30 PM

Hi Paul,

The certificate is used to sign the ClickOnce manifest, when you publish a ClickOnce application; you need to use a certificate to sign its manifest. If you don’t have one, VS will generate a temporary one for you. Please try Robin’s suggestion and tell us if you have any further question.

Hope this helps you.

Sincerely,
Kira Qian
Send us any feedback you have about the help from MSFT at EMAIL REMOVED

Please remember to mark the replies as answers if they help and unmark them if they provide no help.
Welcome to the All-In-One Code Framework!

Kira Qian Friday, October 02, 2009 7:41 AM

You can use google to search for other answers

Custom Search

More Threads

• how to provide an option in installer to choose one out of two windows services to install?

• how to escape overriding cygwin value in registry key???

• Everytime when app updated I click button <Unblock>

• Click Once Deployment - Pre Requisite

• Deployment

• Deploying localization assemblies programmatically

• 'Back' Button gets disabled on the Installation Folder dialog

• Click Once Deployment Using Publish Feature of VS 2005

• ClickOnce + Server error: 'xxx' does not refer to a page or folder in this web. (Visual Studio Team System 2005)

• File associations - again