You can digitally sign the following executable files using the token-based certificate (in addition to the PFX certificate) when deploying the application:
-
PowerClient/PowerServer-deployed application executable file
-
Cloud app launcher
To configure signing with the token-based certificate, you should set Certificate Type to Token-based in the project painter, and then specify the SignTool location, certificate thumbprint, signature algorithm, and URL of the time stamp server. For more information, refer to the section called “Security page” in Users Guide.
When you sign by a script file, you can pass parameters dynamically now.
For example, you can create a cmd file which contains scripts like this:
%1 sign /a /fd sha256 /sha1 %2 /tr %3 /td sha256 %4
And then in the "Use your own signing script" field, input the file path of the cmd file and the parameter values (using Microsoft’s SignCode for example):
"D:\2022R3\test\testparam.cmd" "D:\2022R3\test\signcode.exe" "13731a37233bbd83eeb13e95c7898d1d76a2256c" "http://timestamp.digicert.com" "salesdemo_local.exe"
For more information, refer to the section called “Security page” in Users Guide.
