Skip to main content

CSP library

DigiCert​​®​​ Software Trust Manager CSP is a library-based client-side tool that implements the Crypto API (CAPI) supported in Windows 2008 and later.

The CSP integrates with Microsoft signing tools that are built with Legacy CSP architecture. The CSP takes a hash-based approach when signing requests that don't require transportation of your files and intellectual property.

What Microsoft signing tools can the CSP integrate with?

The DigiCert​​®​​ Software Trust Manager CSP integrates with the following Microsoft signing tools while maintaining key protection, permission-based access, and reporting on all signing activities:

What can the CSP sign?

DigiCert​​®​​ Software Trust Manager CSP enables secure hash-based signing of Microsoft:

  • Executables

  • Installers

  • Files

  • Applications

  • Drivers

  • Images

  • Scripts

Download CSP library

Tipp

If you've downloaded and installed the Windows Clients Installer, the CSP is already downloaded and registered as part of the installation.

  1. In the Software Trust menu, go to Resources > Client tool repository.

  2. Find the desired CSP version, and then select the download (download_icon.png) icon.

    • There are two versions of CSP, 64bit and 32bit.

      Select the 32bit if you're running an older operating system with limited resources that can't handle 64 bit clients.

Register the CSP

  1. Copy the downloaded CSP to the C:\windows\System32 directory named ssmcsp.dll: c:\windows\System32\ssmcsp.dll

  2. To register the CSP, open a command prompt in Administrator mode and run the following command:

    reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\DigiCert Software Trust Manager CSP"

reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\DigiCert Software Trust Manager CSP" /v "SigInFile" /t REG_DWORD /d 0

reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\DigiCert Software Trust Manager CSP" /v "Type" /t REG_DWORD /d 1

reg add "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\Defaults\Provider\DigiCert Software Trust Manager CSP" /v "Image Path" /t REG_SZ /d "ssmcsp.dll

  3. To check if your CSP is registered and ready to use, run the following command:

    C:\windows\system32\certutil.exe -csplist

    Anmerkung

    You should see an entry named DigiCert Software Trust Manager CSP in the output.

In diesem Abschnitt: