Open topic with navigation

Digital Signature Tab

InstallShield 2015 » QuickPatch Project » General Information View » Build Settings

Project: This information applies to QuickPatch projects.

When you click Build Settings in the General Information view of a QuickPatch project, InstallShield displays several tabs. The Digital Signature tab is where you specify settings if you want to digitally sign your patch.

Note: With QuickPatch projects, you can digitally sign the patch package and the Update.exe file. If you want to digitally sign individual files—such as your application’s executable files—in your QuickPatch package, you must manually sign them and then add them to your project. You can use SignTool.exe, which is included with the Windows SDK, to manually sign your files.

Settings in the Digital Signature Tab

Setting

Description

Sign the Patch Package

To digitally sign your QuickPatch package, select this check box.

Sign Update.exe

To digitally sign the Update.exe file, select this check box.

Certificate URL

Type a fully qualified URL—for example, http://www.mydomain.com. This URL is used in your digital signature to link to a site that you would like end users to visit to learn more about your product, organization, or company.

Digital Certificate Information

To specify the digital certificate that you want to use to sign your release, click the Browse button next to this setting. The Certificate Selection dialog box opens, enabling you to specify either the location of the .pfx file or information about the certificate store that contains the certificate.

To learn more, see Certificate Selection Dialog Box.

Password

If the .pfx file that you are using has a password, enter it. InstallShield encrypts the password and stores it in your project file (.ism).

At build time, InstallShield uses the password to sign files with a .pfx file. If your certificate is protected by a password but you do not enter it in this setting, signing with a .pfx file fails.

Note that if you configure your project to use a certificate that was imported with password protection into a store, Windows prompts for the password at build time when InstallShield is attempting to sign your project’s files. The strong key protection that Windows uses does not permit InstallShield to provide the password to the cryptographic provider.

Signature Description

Specify the signature description that you want to use for the patch package and Update.exe file, if applicable. The description that you specify is displayed on the User Account Control (UAC) box to the right of the “Program Name:” label. The UAC dialog box opens when an end user launches the signed file and elevated privileges are required.

If you leave this setting blank, InstallShield uses the name of the file without its extension as the description to the right of the “Program Name:” label on the UAC dialog box.

See Also

Non-Administrator Patches

Preparing Installations for Non-Administrator Patches

Signing a QuickPatch Package

InstallShield 2015 Help Library

June 2015

 Copyright Information | Contact Us