index > ClickOnce and Setup & Deployment Projects > Signing a setup and deployment project

Signing a setup and deployment project

Hi
I have a setup and deploy projectdeveloped with VS 2008. This has two exe and a USB driver installer. I purchased a Microsoft Authenticode Digital IDfrom VeriSign and used it with winqual to certify the USB drivers. I now need to sign the install project so I can git ride of the unknown publisher warningand after reading though this forum I am not sure of what I need to do.

1. Do I have to sign the .exes and .dlls or just the .msi? The project has two separate exe both built with there own project.
2. Several posts in this forum talk about signing being on option in the properties and I can not find it.
3. Other posts talk of running signtool as a separate operation. If this is needed how do I sign the exes?

Any suggestions?
Thanks

BarberColman Tuesday, September 29, 2009 1:36 PM

Hi BarberColman,

1. Do I have to sign the .exes and .dlls or just the .msi? The project has two separate exe both built with their own project.
Reply: Based on my understanding, we only need to sign the generated setup package, including setup.exe and setup.msi.

2. Several posts in this forum talk about signing being on option in the properties and I can not find it.
Reply: As far as I know, only.Net applications(such as WinForm developed in C#,VB) has such an option, native applications(such as program developed with MFC, win32) has no direct support for sign.

3. Other posts talk of running signtool as a separate operation. If this is needed how do I sign the exes?
Reply: Please follow the link below which shows how to use sign tool to sign setup.exe and setup.msi:
http://msdn.microsoft.com/en-us/library/aa371854(VS.85).aspx

Let me know if this does not help.
Aland Li

Please mark the replies as answers if they help and unmark if they don't. This can be beneficial to other community members reading the thread.