Article ID: 247257
Article Last Modified on 12/6/2004
APPLIES TO
- Microsoft Internet Explorer 4.0 128-Bit Edition
- Microsoft Internet Explorer 4.01 Service Pack 2
- Microsoft Internet Explorer 4.01 Service Pack 1
- Microsoft Internet Explorer 4.01 Service Pack 2
- Microsoft Internet Explorer 5.0
- Microsoft Internet Explorer 5.01
- Microsoft Internet Explorer 5.5
This article was previously published under Q247257
SUMMARY
This article describe the steps to sign a cabinet (.cab) file.
MORE INFORMATION
- The Microsoft .NET Framework software development kit (SDK) 1.1 includes the Crypto API files that you must have to sign a .cab file. To download the SDK, visit the following Microsoft Web site:
- Use the following steps to sign and validate the .cab file:
- Type the following at a command prompt to create a private key file, Mycert.pvk.
makecert -sv "mycert.pvk" -n "CN=My Company" mycert.cer
- Create an .spc file from the certificate file with the correct password. To do so, type the following line at a command prompt:
cert2spc mycert.cer mycert.spc
- Use the key information to sign the .cab file:
signcode -v mycert.pvk -spc mycert.spc new.cab -t [Timestamp server URL]
For more information about signtool, visit the following Microsoft Developer Network (MSDN) Web site:
Note Specify the timestamp server URL at this step. The timestamp server URL provides a place to enter or edit the location of a timestamp server. A timestamp server validates the date and time that the cabinet file was signed. Certificate files can expire after a certain period of time. Contact your certificate file provider (certificate authority) for the location of their timestamp server.
Starting with Platform SDK February 2003, signcode.exe has been replaced with signtool.exe.
- Type the following at a command prompt to create a private key file, Mycert.pvk.
- Follow this procedure to validate a .cab file:
- Type the following at a command prompt to run Setreg.exe on the client system with the TRUE value so that the test certificates are recognized:
setreg -q 1 TRUE
- Run Checktrust.exe to ensure that the CAB file is signing correctly:
chktrust new.cab
Expected results
mycab.cab: Succeeded
- Type the following at a command prompt to run Setreg.exe on the client system with the TRUE value so that the test certificates are recognized:
REFERENCES
More information about .cab files is available in the Microsoft Cabinet SDK. The Cabinet SDK is a collection of tools and documentation that explain how to create a download package consisting of a "cabinet" file that contains all the files to be downloaded. For additional information, click the following article numbers to view the articles in the Microsoft Knowledge Base:
176810 How to manually modify and rebuild CAB files
264570 WebCast available: How does Internet Component download work?
Additional query words: Authenticode sign certificate
Keywords: kbhowto kbinfo kbcodesign kbfaq KB247257