This project has moved and is read-only. For the latest updates, please go here.

[Solved] Install updates signed by our AD Root CA

Topics: Publishing Issue
Nov 25, 2013 at 4:25 PM

Rather than importing a code signing cert to WPP that would sign all my packages, can I sign the package "manually" with our root CA and than deploy the already signed package with WPP?

Many thanks

Nov 25, 2013 at 4:27 PM
Yes you can use a codesigning certificate from your root CA.
Nov 25, 2013 at 4:54 PM
Hi NorbertFe,

Sorry, I am not sure if I made myself clear. I know I can use a codesigning certificate from your root CA, but can the package beimported to WPP already signed or does it have to be signed as part of the publishing process?


Nov 25, 2013 at 9:33 PM
To be honest, I never try that. I'm not sure that you can import an already signed package. But I think it's required to have a code signing certificate into the "Wsus" store to allow Wsus to work properly with Locally Published updates.
Marked as answer by DCourtel on 1/17/2014 at 7:58 AM