Slightly OT: Windows Code Signing

Paul Dupuis paul at researchware.com
Mon Oct 26 15:32:38 EDT 2020 

Thank you Matthias,

I did notice the unexpectedly large price on Sectigo direct and purchase 
a 3 year through comodosslstore.com for about $212.50 USD, so at an okay 
price for me. Mine is just a plain signing cert, not the EV.

What I ran into that was very frustrating was the browser requirements. 
You would think - especially with the vagueness of browsers supporting 
certain features - that they would make an app to do their own CSR 
generation at the start of the process and the same app can do the 
download at the end

I do not have any older version of IE (on VMs or otherwise). I did 
download Firefox 68 (current release is 82!, but 68 is only from early 
2019) but could not get it to work. Finally I was able to download my 
cert via Safari under Mojave and move it to my Windows 10 via Dropbox 
and under Windows 10 use the MMC (Microsoft Management Console) to 
import it and export it in p12 (.pfk) format for use in signing 
Standalones. Success, but what a pain to go through.

If anyone has found a Issuer that will just let you download the code 
signing cert as a .p12 pr .pfk file, I'd like to know.

On 10/26/2020 2:25 PM, matthias rebbe via use-livecode wrote:
> Hi Paul,
>
> first of all buying directly through Sectigo is expensive. If you purchase from one of Sectigo's partners you'll get it much cheaper.
> I've  purchased in July a 3year code signing certificate ( not the ELV) for 207 Euro for all 3 years. The certifcate was also delivered by Sectigo. And i was able to download the certificate on my Windows 10 VM with Internet Explorer, if i remember right. I even cannot remember that a special version of Mozilla was required.
> They only mentioned, that you cannot fetch your certificate with MS Edge, Chrome and Safari.
> I've did the complete purchase process on my Windows 10 VM.
>
> Regards,
> Matthias
>
>
> -
> Matthias Rebbe
> Life Is Too Short For Boring Code
>
>> Am 26.10.2020 um 18:32 schrieb Paul Dupuis via use-livecode <use-livecode at lists.runrev.com>:
>>
>> My Windows Code signing cert for signing LiveCode standalones has expired.
>>
>> I purchased it from instantsll.com (3 year) which has become sectigo.com and it appears that they never moved over old accounts since my prior username, email, and password do not work nor does the email work for password recovery.
>>
>> So I bought a new one from comodosslstore.com (which turns out is also sectigo.com). Verification was quick and automate - no problem.
>>
>> Now my cert is ready, but the download/install instructions requires Internet Explorer 11 or Firefox 68 or older (Firefox is at version 82 and Microsoft Edge is what comes with Windows 10 not Internet Explorer 11
>>
>> Their support documentation is conflicting and terrible (IMHO).
>>
>> It is not too late to cancel the order and buy elsewhere. Does anyone have a recommendation for a supplier of Windows Code Signing certs that have a simple and straight forward process for buying AND getting the .p12 file you ultimately need for code signing?
>>
>> This is kind of urgent since we are unable to sign until we get a new cert.
>>
>> _______________________________________________
>> use-livecode mailing list
>> use-livecode at lists.runrev.com
>> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
>> http://lists.runrev.com/mailman/listinfo/use-livecode
>
> _______________________________________________
> use-livecode mailing list
> use-livecode at lists.runrev.com
> Please visit this url to subscribe, unsubscribe and manage your subscription preferences:
> http://lists.runrev.com/mailman/listinfo/use-livecode

More information about the use-livecode mailing list