question

AlfonsoCrawford-7366 avatar image
0 Votes"
AlfonsoCrawford-7366 asked EncLock-9765 answered

Signing DLLs to clear a Windows 10 S audit

While testing my UWP app for Windows 10 S with the audit mode policy, the only failure/error I'm getting is that some of the DLLs did not meet the Custom 1 signing level requirements or violated code integrity policy (Policy ID:{a244370e-44c9-4c06-b551-f6016e563076}). Every operation of the app works with nothin showing up within the audit, so I assume the program is otherwise fine.

I'm still new to development within a Microsoft environment, so I'm betting this is something super simple. Are the necessary signatures provided by Microsoft once the app is on the store? Am I supposed to sign the DLLs myself before submitting the app?

None of my attempts to articulate this problem within a search engine are coming back with workable results, which I presume is another symptom of my lack of familiarity: I don't even know specifically what I'm looking for. Thank you for your time and consideration.

windows-uwp
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

RoyLi-MSFT avatar image
0 Votes"
RoyLi-MSFT answered AlfonsoCrawford-7366 commented

Hello,

Welcome to Microsoft Q&A!

Based on this document: Test your Windows app for Windows 10 in S mode, the Audit mode policy requires Store certificate. Have you associated your app to the store before you package your app? If not, please associate your app with the store and then install the app to test.

Thank you.


If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


· 3
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Aha! I knew I was overlooking something simple. I'm not seeing the signing requirement in Event Viewer any more, so I suppose that's what was needed. Thank you!

0 Votes 0 ·
RoyLi-MSFT avatar image RoyLi-MSFT AlfonsoCrawford-7366 ·

Glad to hear that my reply helps. You could accept it as answer so that it might help other people who are facing the same issue.

0 Votes 0 ·

I wasn't being given the option to accept it at the time, but I'll do it now since the button is showing up~

0 Votes 0 ·
EncLock-9765 avatar image
0 Votes"
EncLock-9765 answered

@AlfonsoCrawford-7366 or anyone who can help: I am having the same issue. When my app (EncLock) is accessing the DLLs it depends on I get the same error you did EncLock.exe attempted to load somedll.dll that did not meet the Custom 1 signing level requirements or violated code integrity policy (Policy ID:{a244370e-44c9-4c06-b551-f6016e563076}). I have the app associated with the Microsoft app store and I do have the StoreKey.pfx which I used to Digitally Sign all the DLLs involved and the EXE. However, when I install the app on my local machine and run it while running the Win 10 S test Audit mode policy I am still getting the ...did not meet the Custom 1 signing level requirements... events in the Event Logger.

Can you provide some detailed instructions on how you got it to go away?

Thanks!

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.