Description
I am bit confused so please bear with me.
Trying to use a code signer certificate from Certum, their open-source code sign certificate. They force the use of their SimplySign Desktop app and it acts much like a card reader.
I can sign files using powershell and the certificate thumbprint without issue using:
signtool sign /sha1 "b1592a712c39cddfa2a22f24daxxxxxxxxx..." /tr http://time.certum.pl /td sha256 /fd sha256 /v "tools.exe"
or using Inno Setup like:
"C:\Program Files (x86)\Windows Kits\10\bin\x64\signtool.exe" sign /sha1 "b1592a712c39cddfa2a22f24daxxxxxxxxx.." /tr http://time.certum.pl /td sha256 /fd sha256 $f
The docs for windows-sign show:
signtool.exe sign /csp "DigiCert Signing Manager KSP" /kc <keypair_alias> /f <certificate_file> /tr http://timestamp.digicert.com /td SHA256 /fd SHA256 <file_to_be_signed>
Will this work with the windows-sign? If so, maybe example? I just can't seem to get it right if it does work.