Jarsigner is a tool that allows you to sign and verify .jar files.
Integrate Jarsigner with Sign with SMCTL for simplified signing. Alternatively, you can sign directly with Jarsigner and reference your private key stored in Software Trust Manager.
Tip
Jarsigner is compatible for signing on Windows, macOS, and Linux.
Software Trust Manager supports JDK version 8 to 17.
Use Jarsigner to sign, timestamp, and verify the following file types:
.ear
.jar
.sar
.war
Note
The Java Development Kit (JDK) includes jarsigner and keytool.
Operating systems use the environment variable called PATH to determine where executable files are stored on your system. Use the PATH environment variable to store the file path to your signing tools to ensure that the CLI can reference these signing tools.
You can set the PATH environment variable to Jarsigner using command line or environment variables.
To set the path to your signing tools:
There are two libraries that Jarsigner integrates with depending on the type of signing you want to do. Identify the type of signing you want to enable and install the associated library.
Jarsigner uses a configuration file to integrate with Software Trust Manager PKCS11 library.
Follow these instructions to download Software Trust Manager PKCS11 library and create the configuration file.
Jarsigner integrates with Software Trust Manager KSP library to sign.
Follow these instructions to download and register Software Trust Manager KSP library.
You can sign directly with Jarsigner or via DigiCert's signing tools integrated with Jarsigner: