DigiCert® Click-to-sign
DigiCert Click-to-sign is a DigiCert® KeyLocker client tool that simplifies code signing, using a right-click context menu to sign filers or folders, removing the need for command-line interaction.
Before you begin
Review the following statements:
DigiCert® Click-to-sign relies on Signing Manager Controller (SMCTL) and PKCS#11 library to sign.
These client tools must be stored in the
C:\Program Files\DigiCert\DigiCert KeyLocker Tools\
folder to be used by DigiCert Click-to-sign.SignTool is not included in the DigiCert-provided Windows client tools package. To learn how to download SignTool, see Download SignTool.
Prerequisites
Windows 10 or Windows 11 operating system
.NET Framework (version 4.7 or higher)
DigiCert ONE client authentication certificate
Windows SDK (to use SignTool)
SignTool is not included in the DigiCert-provided Windows client tools package.
To learn how to download SignTool, see Download SignTool.
File or folder to be signed
Supported file types
DigiCert Click-to-sign supports the use of any signing tool supported by Signing Manager Controller (SMCTL) and PKCS#11 library, including:
Signing tool | File type |
---|---|
.ear | |
.jar | |
.sar | |
.war | |
.application | |
.manifest | |
.vsto | |
.nupkg | |
Signtool (64-bit) | .appx |
.appxbundle | |
.arx | |
.cab | |
.cat | |
.cbx | |
.cpl | |
.crx (only MS-DOS EXE package format) | |
.dbx | |
.deploy | |
.dll | |
.drx | |
.efi | |
.exe | |
.js | |
.msi | |
.msix | |
.msixbundle | |
.msm | |
.msp | |
.ocx | |
.psi | |
.psm1 | |
.stl | |
.sys | |
.vbs | |
.vsix | |
.vxd | |
.wsf | |
.xap | |
.xsn | |
SignTool (32-bit) | .doc |
.docm | |
.dot | |
.dotm | |
.mpp | |
.mpt | |
.pot | |
.potm | |
.ppa | |
.ppam | |
.pps | |
.ppsm | |
.ppt | |
.pptm | |
.pub | |
.vdw* | |
.vdx* | |
.vsd* | |
.vsdm | |
.vss* | |
.vssm | |
.vst* | |
.vstm | |
.vsx* | |
.vtx* | |
.wiz* | |
.xla | |
.xlam | |
.xls | |
.xlsb | |
.xlsm | |
.xlt | |
.xltm |
Download DigiCert Click-to-sign
In the Managers (
) menu, select KeyLocker.
In the KeyLockermenu, go to Resources > Client tool repository.
Download DigiCert Click-to-sign Installer.
Install DigiCert Click-to-sign
Run the DigiCert_Click_to_sign.msi application.
In the DigiCert Click-to-sign installation wizard, complete the following:
Set PATH environment variable
Operating systems use the environment variable called PATH to determine where executable files are stored on your system. Use the PATH environment variable to store the file path to your DigiCert ONE Signing Manager Tools to ensure that the DigiCert® Click-to-sign can reference these tools.
You can set the PATH environment variable to DigiCert ONE Signing Manager Tools using command line or environment variables.
To set the path to your signing tools via command line, review the following command:
set PATH=%path%;<Path to DigiCert ONE Signing Manager Tools folder>
Review the following command sample:
set PATH=%path%;C:\Program Files\DigiCert\DigiCert One Signing Manager Tools
To set the path to your signing tools for your system or account:
Search for environment variables in the Windows start menu.
Select Edit environment variables for your account or Edit system environment variables.
Double-click on the Path variable.
Select New.
Select Browse.
Provide the path to DigiCert ONE Signing Manager Tools:
C:\Program Files\DigiCert\DigiCert One Signing Manager Tools
Select OK to save the path.
Select OK to close the dialog.
Review and sign
To sign immediately using the default settings you selected during the configuration:
Right-click on the file you want to sign.
Select DigiCert® Click-to-sign > Sign now.
To review the file or folder and the default settings before signing:
Right-click on the file you want to sign.
Select DigiCert® Click-to-sign > Review and sign.
Review the selected file and default settings.
Select Sign.
Change default settings
To update your default user credentials, signing algorithm, timestamp settings, and certificate:
Right-click on the file.
Select DigiCert® Click-to-sign > Settings.
Change your preferences.
Select Save.