TechQA.

How do I sign windows software with a certificate on a yubikey?

135 views Asked by At

Previously, I would insert the yubikey into a USB port and then run ./signtools.exe from powershell with the relevant options. I would then be prompted to enter my PIN.

I have tried to do this on my new computer and now I get the error

"SignTool Error: No certificates were found that met all the given criteria."

I have installed the Yubikey manager and the certificate is there under PIV, unexpired.

windows code-signing yubikey
Original Q&A
1

There are 1 answers

0
Emmanuel Bourg On

If you struggle with signtool you can try Jsign which supports Yubikeys.

jsign --storetype YUBIKEY --storepass 123456 --certfile full-chain.pem application.exe

If there is a problem with the certificate or the key it should display a meaningful error message.

(disclaimer: I'm the author of this project)

Related Questions in WINDOWS

Related Questions in CODE-SIGNING

Related Questions in YUBIKEY

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions