/INTEGRITYCHECK (Require Signature Check)

Specifies that the digital signature of the binary image must be checked at load time.



By default, /INTEGRITYCHECK is off.

The /INTEGRITYCHECK option sets—in the PE header of the DLL file or executable file—a flag for the memory manager to check for a digital signature in order to load the image in Windows. This option must be set for both 32-bit and 64-bit DLLs that implement kernel-mode code loaded by certain Windows features, and is recommended for all device drivers on Windows Vista, Windows 7, Windows 8, Windows Server 2008, and Windows Server 2012. Versions of Windows prior to Windows Vista ignore this flag. For more information, see Forced Integrity Signing of Portable Executable (PE) files.

To set this linker option in Visual Studio

  1. Open the project Property Pages dialog box. For more information, see Set C++ compiler and build properties in Visual Studio.

  2. Expand the Configuration Properties node.

  3. Expand the Linker node.

  4. Select the Command Line property page.

  5. In Additional Options, enter /INTEGRITYCHECK or /INTEGRITYCHECK:NO.

See also

MSVC linker reference
MSVC Linker Options
Forced Integrity Signing of Portable Executable (PE) files
Kernel-Mode Code Signing Requirements
AppInit DLLs and Secure Boot