Could you please share the following
b. My.MSI that you created
The error log mentioned in your message above indicates the certificate is not trusted, I'll take a look at the cause of the failure and revert back to you on this
I am able to sign and execute other file formats such as .exe,.dll and .vbs using the above certificate.
Only MSI execution is failing. I verified the My.MSI using signtool for signature, but verification is passed.
The msi contains batch scripts and exe. I also tried installing other MSIs which have only exe and dll, but they too failed.
The certificate is added to the root and it is trusted on my local machine where I sign the files.
Can you please check and let us know the message that you can see after following the below steps:
Right Click on the binary>Properties> Digital Signatures> Select the Name of Signer>Details>View Certificate. Please check the message under Certificate Information.
If the message read out like "Windows does not have enough information to verify the certificate". It traslates that the certificate is not getting validated by Windows API. We use the same Windows API to validate the self signed installers. That can be the reason you are not able to install the self signed installer.
Yes I see the same message for the signed files on the system where I have installed solidifier. I installed the pfx certificate to the trusted root certificate authority but I still see the same message when I look into the files properties.
How come exe where allowed to install but not *.vbs and *.MSI files even when certificate is not verified by windows ?
How can I make Windows API to validate the certificate ?
Issue resolved. I added the certificate to trusted root and was able to install the MSI. Thanks a lot.