How can I sign an ActiveX control with a code signing certificate and be a verified publisher?

Posted by davidcl on Stack Overflow See other posts from Stack Overflow or by davidcl
Published on 2010-05-11T20:32:59Z Indexed on 2010/05/11 23:14 UTC
Read the original article Hit count: 538

I'm trying to sing an ActiveX control with a code signing certificate issued by Thawte. I was able to successfully sign the control using signtool.exe.

When I look at the file properties, it says "The certificate in the signature cannot be verified."

When I view the certificate it says "Windows does not have enough information to verify the certificate."

On the certification path tab, it says "The issuer of this certificate cannot be found."

In internet explorer, the certificate is recognized as signed but the user receives warnings that the publisher is not verified.

I've tried creating a single PFX file containing my certificate along with the root and intermediate certificates that chain to my Thawte developer certificate, and then re-signing the control using that PFX file. No dice.

Any suggestions?

© Stack Overflow or respective owner

Related posts about authenticode

Related posts about certificates