如何在远程桌面上使用EV代码签名令牌

huangapple go评论63阅读模式
英文:

How to use EV code signing token over RDP

问题

在我的设置中,我有一个插入到我的本地(Windows)计算机的Sectigo EV代码签名令牌。从该计算机,我通过远程桌面登录到另一台(Windows)计算机(位于Azure中)。在这两台计算机上,我已经安装了"SageNet Client"软件。

在远程计算机上,我运行构建作为这些构建的一部分。.exe文件和DLL文件使用令牌上的证书进行签名。这在过去的几年里一直运行良好。

最近,我不得不更新代码签名令牌,同时也获得了一台新的开发(本地)计算机。

现在,当我尝试进行签名(使用与以前相同的代码/批处理作业等),签名失败,因为在远程计算机上找不到证书。

我记得几年前为了使签名工作,我曾经做过一些"特殊"的事情,但我不记得这是与远程桌面配置、域策略、防火墙策略还是Sectigo令牌的某些配置有关。

我已经向Sectigo支持提出了问题,他们否认这种设置根本不可能,这显然是不正确的。

您有什么想法,我需要调整什么以便能够再次使用我的以前的签名设置?

英文:

In my setup, i have a Sectigo EV code signing token plugged into my local (windows) machine. From that machine, i log in over RDP to another (windows) maching (in azure). On both machines, i have the "SafeNet Client" Software installed.

On the remote machine, i do run builds in as part of these builds .exe files and DLLs get signed using the cert on the token. This worked flawlessly for the last couple of years.

Lately, i had to renew the code signing token and at the same time, also got a new development (local) machine.

Now when i try to sign (using the same code/batch jobs, etc. like before), the signing fails, because the cert cannot be found on the remote machine.

i do remember having done something "special" for the signing to work a couple of years ago, but i do not remember if this was something with rdp configuration, a domain policy, a firewall policy or some configuration of the sectigo token.

I already asked the Sectigo support and they deny this setup is possible at all, which is clearly not true.

Any ideas what i need to tweak in order to be able use my previous singning setup again?

答案1

得分: 0

似乎不需要特别处理,它"只是起作用"。我不知道为什么一开始对我不起作用。然而,我卸载了本地机器和远程机器上的SafeNet软件,然后重新安装。首先在本地机器上安装(令牌插在那里),然后在远程机器上安装。之后没有问题。不知道是什么原因导致了最初的问题。

英文:

It appears nothing special has to be done, it 'just works'. I don't know why it did not work for me initially. However, i did uninstall the SafeNet Software on both the local machine and the remote machine and reinstalled. (First on the local machine, where the token is plugged in and next on the remote machine.)

No problems after that. No idea what caused the initial problems.

huangapple
  • 本文由 发表于 2023年2月6日 17:51:21
  • 转载请务必保留本文链接:https://go.coder-hub.com/75359714.html
匿名

发表评论

匿名网友

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen:

确定