Hi Wolfgang,

Yes, this can be done. For example, we have such an option in SetupBuilder
10. General Information -> Advanced Settings -> "Verify Code-Signed Install
at Startup".

Internally, it is using our "Get File Info..." (Verify Trust) script
function.

Please note that from time to time, Windows needs a root certificate update
(it's done automatically) to check for revoked certificates. If a machine
has an "outdated" root certificate (e.g. user kills the Update service or
computer not Internet connected for some time)then Windows might return a
"certificate not valid" status.

Some interesting threads:
http://www.lindersoft.com/forums/sho...7567#post87567
http://www.lindersoft.com/forums/sho...7570#post87570
http://www.lindersoft.com/forums/sho...tupBuilder-7-7
http://www.lindersoft.com/forums/sho...8775#post78775

Friedrich