Verifying that Your Output Files Are Digitally Signed on Windows–Based Target Systems

InstallAnywhere 2021

Regardless of which method you use to prepare your digital-signed installers, at various points in the process, it is important to verify whether the target file has been properly digital signed before proceeding with the next step of the process.

It is also crucial to test the final output on a clean machine.

Command for Digital Signing in Windows

The command for executing IAWinDigiSign.exe in InstallAnywhere is given below:-

IAWinDigiSign.exe /f <pfx file path> /o <Name of signer> /p <password>

/t <timestamp> /algo <algorith> <executable to sign>

where:

/f parameter is the path of Certificate file to be used for signing
/o parameter is Signing Certificate Subject/certificate owner name
/p parameter is the Password for encoded certificate
/t parameter is the URL of time Stamp Server
/algo parameter is the algorithm used for signing

followed by the Executable which is to be signed.

Important:If and only the executable is digitally signed properly, you will be able to view the Digital Signatures tab on the Properties dialog box. If not, an error message will be displayed.

The following instructions explain how to verify digital signing output files.

To verify your output files are digitally signed:

1. Right-click the product and click Properties to view the Product Properties.
2. Click Digital Signatures tab on the product Properties dialog box to view the Name of Signer, Digest Algorithm, and Timestamp.
3. Click Details on the Digital Signatures tab of the product Properties dialog box to verify that your digital signing output files are working properly on Windows-based Target Systems.

The Digital Signature Details dialog box lists out the below Signer information.

Name of the Signer
Email of the Signer
The Signing time of the digitally signed output file.

You can also view the certificate information by clicking View Certificate on the Digital Signature Details dialog box.