NewsArchive
12-12-2015, 09:49 AM
Hello Friedrich,
four days ago I ordered my new certificate, but Comodo didn't move. So I went
to their support site, started the chat, and during this chat I got verified
with a phonecall and eventually found a downloadable ZIP in my Management
Account.
So far, so good.
I downloaded tha ZIP, extracted the contents, found 4 files, each was ending with CRT.
Then I found an e-mail with a link, which pointed me to another Comodo page,
from where I could _install_ the certificate.
Hmmmmm
First question: Why should I install, when I got those CRT-files? Am I then
tied to this machine for the next three years?
Of course, installing did not work! I got a message in FireFox, saying my
private key could not be found. I did not know that I have one at all! It also
said, that I have to use the same computer from where I placed the order. Of
course, it was another one. <rolleyes>
Okay, switched to the other machine (also Win 8.1), starting IE, eventuelly
ended with this error:
ERROR 0x80092004: CertEnroll::CX509Enrollment::InstallResponse: Das Objekt oder
die Eigenschaft wurde nicht gefunden. 0x80092004 (-2146885628
CRYPT_E_NOT_FOUND)
Then I tried FF on this second machine, another error.
Second question: Have I just sent $200 down the drain?
I searched through Janes PDF, but found nothing on CRT, also nothing here in
the NG (using the webbrowserUI, which has a poor search function). Combed the
web, did not find anything helpful, but eventually found this page:
http://www.davidegrayson.com/signing/
which seemed promising, but I confess, it has too much information for my
little brain. My head is spinning!
He shows two batch files, here is one of them:
---------
"C:\Program Files (x86)\Windows Kits\10\bin\x86\signtool" sign /v /ac
"your-cross-cert.crt" /n "Your company name" /fd sha1 /tr
http://timestamp.globalsign.com/?signature=sha2 /td sha256 %1
pause
---------
Would this help me?
Or can I use these CRTs in Setupbuilder?
Fifth question (and last for today, I hope): What do I do next?
My intention is to have the code-signing capabilities on one machine now, but
easily move my entire environment to a new computer in 2016.
(Ich bin kurz davor, Männchen zu machen, echt jetzt!)
Somehow desperate,
Wolfgang Orth
www.odata.de
The term PITA has to be defined new!
four days ago I ordered my new certificate, but Comodo didn't move. So I went
to their support site, started the chat, and during this chat I got verified
with a phonecall and eventually found a downloadable ZIP in my Management
Account.
So far, so good.
I downloaded tha ZIP, extracted the contents, found 4 files, each was ending with CRT.
Then I found an e-mail with a link, which pointed me to another Comodo page,
from where I could _install_ the certificate.
Hmmmmm
First question: Why should I install, when I got those CRT-files? Am I then
tied to this machine for the next three years?
Of course, installing did not work! I got a message in FireFox, saying my
private key could not be found. I did not know that I have one at all! It also
said, that I have to use the same computer from where I placed the order. Of
course, it was another one. <rolleyes>
Okay, switched to the other machine (also Win 8.1), starting IE, eventuelly
ended with this error:
ERROR 0x80092004: CertEnroll::CX509Enrollment::InstallResponse: Das Objekt oder
die Eigenschaft wurde nicht gefunden. 0x80092004 (-2146885628
CRYPT_E_NOT_FOUND)
Then I tried FF on this second machine, another error.
Second question: Have I just sent $200 down the drain?
I searched through Janes PDF, but found nothing on CRT, also nothing here in
the NG (using the webbrowserUI, which has a poor search function). Combed the
web, did not find anything helpful, but eventually found this page:
http://www.davidegrayson.com/signing/
which seemed promising, but I confess, it has too much information for my
little brain. My head is spinning!
He shows two batch files, here is one of them:
---------
"C:\Program Files (x86)\Windows Kits\10\bin\x86\signtool" sign /v /ac
"your-cross-cert.crt" /n "Your company name" /fd sha1 /tr
http://timestamp.globalsign.com/?signature=sha2 /td sha256 %1
pause
---------
Would this help me?
Or can I use these CRTs in Setupbuilder?
Fifth question (and last for today, I hope): What do I do next?
My intention is to have the code-signing capabilities on one machine now, but
easily move my entire environment to a new computer in 2016.
(Ich bin kurz davor, Männchen zu machen, echt jetzt!)
Somehow desperate,
Wolfgang Orth
www.odata.de
The term PITA has to be defined new!