/INTEGRITYCHECK (Require Signature Check)

  • Article

 

The latest version of this topic can be found at -INTEGRITYCHECK (Require Signature Check).

Specifies that the digital signature of the binary image must be checked at load time.

/INTEGRITYCHECK[:NO]

Remarks

By default, /INTEGRITYCHECK is off.

The /INTEGRITYCHECK option sets—in the PE header of the DLL file or executable file—a flag for the memory manager to check for a digital signature in order to load the image in Windows. This option must be set for both 32-bit and 64-bit DLLs that implement kernel-mode code loaded by certain Windows features, and is recommended for all device drivers on Windows Vista, Windows 7, Windows 8, Windows Server 2008, and Windows Server 2012. Versions of Windows prior to Windows Vista ignore this flag. For more information, see Forced Integrity Signing of Portable Executable (PE) files.

To set this linker option in Visual Studio

  1. Open the project Property Pages dialog box. For more information, see How to: Open Project Property Pages.

  2. Expand the Configuration Properties node.

  3. Expand the Linker node.

  4. Select the Command Line property page.

  5. In Additional Options, enter /INTEGRITYCHECK or /INTEGRITYCHECK:NO.

See Also

Setting Linker Options
Linker Options
Forced Integrity Signing of Portable Executable (PE) files
Kernel-Mode Code Signing Walkthrough
AppInit DLLs in Windows 7 and Windows Server 2008