Obtaining a code-signing certificate
|Article:HOWTO58561|||||Created: 2011-08-01|||||Updated: 2013-07-12|||||Article URL http://www.symantec.com/docs/HOWTO58561|
One of the fundamentals of the ClickOnce design is that deployment packages must be secure and trusted. So, it is a requirement that all ClickOnce packages are signed using a suitable code-signing certificate. If you do not have one, you can make a self-signed certificate by running Microsoft's Certificate Creation Tool (
Makecert.exe). This tool is available in recent versions of Visual Studio and the Windows SDK.
To make a self-signed certificate
Open a Command Prompt window.
Change to the folder in which you have installed
Type the following command:
makecert -a sha1 -b mm/dd/yyyy -e mm/dd/yyyy -eku oid -n "CN=certificate_name" -pe -r -ss store
where the parameters are as follows:
For more information on these options, see the following article on the Microsoft website:
For example, the following command creates a self-signed certificate that "YourCompany Inc" has issued and that is valid until January 2036. The command imports the certificate directly into your personal certificate store:
makecert -a sha1 -b 01/01/2000 -e 01/01/2036 -eku 184.108.40.206.220.127.116.11.3 -n "CN=YourCompany Inc" -pe -r -ss My
Article URL http://www.symantec.com/docs/HOWTO58561