Home/ Questions/Q 3484174
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-18T10:45:31+00:00

I just bought a code-signing certificate for the first time. I’m successfully signing my

  • 0

I just bought a code-signing certificate for the first time. I’m successfully signing my code from script/command line using 

signtool sign /f <pfx file> /p <password> <exe file>

I noticed that signtool also has a /a option that will “choose the best certificate”, which I believe uses any certificates imported into the Windows Certificate Store to select from.

If I double-click my cert, it opens the Certificate Import Wizard.

What are the pros/cons of using the Certificate Store? In particular for an individual developer.

It looks like with the certificate store I do not need to use provide the password for each call. I guess that means the certificate store is linked to my user and uses my login credentials to validate use of the certs?

Thanks,
Brett

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    As far as I am concerned, there really isn’t any clear benefit to using the the Windows Certificate Store aside from having it organized in a streamlined manner in a database (the registry).

    In some cases (e.g. export) it is more convenient to work with the store.

    If you are interested in learning more about the inner-working of the certificate store, check the following:

    http://msdn.microsoft.com/en-us/library/aa386971%28VS.85%29.aspx

    http://technet.microsoft.com/en-us/library/cc962104.aspx

    • 0