Microsoft KB Archive/888704

= BUG: You may receive &quot;The signature is corrupt or the certificate used to sign this form is expired&quot; error message in InfoPath 2003 Service Pack 1 =

Article ID: 888704

Article Last Modified on 5/1/2007

-

APPLIES TO


 * Microsoft Office InfoPath 2007
 * Microsoft Office InfoPath 2003, Service Pack 1 (SP1)

-



SYMPTOMS
When you open a solution with a signature, you may receive the following error message:

InfoPath cannot load this form. The signature is corrupt or the certificate used to sign this form is expired or has been revoked. Contact the author of the form.

To determine the unique number that is associated with the message that you receive, press CTRL+SHIFT+I. The following number appears in the lower-right corner of this message:

1202431

This problem occurs in Microsoft Office InfoPath 2007 or in Microsoft Office InfoPath 2003 Service Pack 1.



WORKAROUND
To work around this problem, you have to re-sign and to re-deploy the templates.



STATUS
Microsoft has confirmed that this is a bug in the Microsoft products that are listed in the &quot;Applies to&quot; section.



InfoPath 2007
 Start InfoPath 2007. Design a form. On the Tools menu, click Form Options. In the Form Options dialog box, click Security and Trust in the Category list. Click Full Trust (the form has access to files and settings on the computer), and then click OK.

Note You may have to click to clear the Automatically determine security level based on form's design (recommended) check box first. After you do this, the Full Trust (the form has access to files and settings on the computer) option is available. On the File menu, click Save As. In the File name box, type Sign.xsn, and then click Save.</li> Close the form.</li> Run Signcode.exe. To run Signcode.exe, follow these steps: <ol style="list-style-type: lower-alpha;"> Click Start, click Run, locate Signcode.exe, and then press ENTER.

Typically, Signcode.exe is at the following location:

C:\Program Files\Microsoft Visual Studio .NET 2003\SDK\v1.1\Bin

Note If you are using the Microsoft Visual Studio .NET 2005 SDK, you must use the command signtool signwizard from the following folder:

C:\Program Files\Microsoft Visual Studio 8\SDK\v2.0\Bin

</li> In the Digital Signature Wizard, click Next, click Browse, and then move to the folder in which you saved the form.</li> In the Files of type list, click All files (*.*), click the Sign.xsn template file, click Open, and then click Next.</li> Click Custom, click Next, and then click Select from File.</li> Open the appropriate folder, click the signing certificate that you want to use, click Open, and then click Next.</li> Click Private Key in a CSP, and then click Next four times.</li> Click to select the Add a timestamp data check box, type http://timestamp.verisign.com/scripts/timstamp.dll in the Timestamp service URL box, and then click Next.</li> Click Finish, and then click OK.</li></ol> </li> Set the system clock beyond the certificate date of expiration.</li> Start InfoPath 2007, and then open the solution.

You may receive the error message that is mentioned in the &quot;Symptoms&quot; section. However, you expect the solution to open because the certificate was valid at the time that the solution was time stamped.</li></ol>

InfoPath 2003
<ol> Start InfoPath 2003. Design a form.</li> On the Tools menu, click Form Options.</li> In the Form Options dialog box, click the Security tab.</li> Click to select the Full Trust check box, and then click OK.

Note You may first have to click to clear the Automatically determine security level based on form's design (recommended) check box. After you do this, you can click to select the Full Trust check box.</li> <li>On the File menu, click Save As. In the File name box, type Sign.xsn, and then click Save.</li> <li>Run Signcode.exe. To run Signcode.exe, follow these steps: <ol style="list-style-type: lower-alpha;"> <li>Click Start, click Run, locate Signcode.exe, and then press ENTER.

Typically, Signcode.exe is at the following location:

C:\Program Files\Microsoft Visual Studio .NET 2003\SDK\v1.1\Bin

</li> <li>In the Digital Signature Wizard, click Next, click Browse, click the Sign.xsn template, and then click Next.</li> <li>Click to select the Custom check box, click Next, click Select from File, click the signing certificate that you want to use, and then click Next.</li> <li>Click Private Key, and then click Next four times.</li> <li>Click to select the Add a timestamp data check box, type http://timestamp.verisign.com/scripts/timstamp.dll in the Timestamp service URL box, and then click Next.</li> <li>Click Finish.</li></ol> </li> <li>Set the system clock beyond the certificate date of expiration.</li> <li>Start InfoPath 2003, and then open the solution.

You may receive the error message that is mentioned in the &quot;Symptoms&quot; section. However, you expect the solution to open because the certificate was valid at the time that the solution was time stamped.</li></ol>

<div class="references_section">