question

jbr-1568 avatar image
0 Votes"
jbr-1568 asked ·

Signing UWP application with EV certificate

Hi,
I have a problem where my EV Code Signing certificate is not visible in Visual Studio Community 2019 (16.6.5) when I'm trying to sign UWP application. Both on editing the appxmanifest property (packaging tab) and through "create app packages" I get the information that "No certificates meet the application criteria". But at the same time I am able to sign the same application manually using the SignTool tool (after editing the Package.appxmanifest file so that the "Publisher" attribute matches the data in my certificate.) Using the same certificate I am also able to sign the Windows Forms App (.NET framework) using ClickOnce manifest - here I can select my EV certificate from the list by clicking "Select from Store".

The certificate comes from the provider listed on https://docs.microsoft.com/en-us/windows-hardware/drivers/dashboard/get-a-code-signing-certificate, specifically it is "Certum EV code signing certificate".

Hope I have clearly described my problem, thanks in advance for your help

Tere some screenshots:
UWP: https://i.imgur.com/Y1OxnnV.png
Windows Forms App: https://i.imgur.com/XZslFHa.png
SignTool: https://i.imgur.com/GhJKK7Q.png

vs-general
· 4
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Do you have the certificate file in your local machine? If you do, what about clicking the 'select from file' option and choose the certificate file? It should recognize the certificate.

Another thing is that have you installed the certificate into the device before? Has the certificate been added to the certificate store of the current device?

0 Votes 0 ·

I added the certificate to my user personal store, SignTool or Visual Studio with Windows Form App find it correctly here (but I also checked scenarios where the certificate was placed elsewhere).

As for adding a certificate directly from a file, I can't do it because with the Extended Validation certificate my private key is contained only in the hardware token and it is not possible to export it to a file.

0 Votes 0 ·

I'll ask some engineers who are more familiar with Visual Studio here to take a look at this issue.

0 Votes 0 ·

Did you get anywhere trying to resolve this issue?

0 Votes 0 ·

0 Answers