Signing Manager Controller (SMCTL)
Signing Manager Controller (SMCTL) provides a Command Line Interface (CLI) that facilitates manual and automated private key management, certificate management, and signing with or without the need for human intervention.
SMCTL comes with a built-in help function and provides instructions on all commands and subcommands to assist users in the CTL tool.
SMCTL provides secure key generation, application hash signing, and associated certificate-related requirements when the signing request does not require the transportation of files and intellectual property.
Prerequisites
Commands
To view all SMCTL commands:
smctl --help
or
smctl -h
Subcommands
These subcommands specify the actions you can apply to commands when using SMCTL.
All SMCTL commands begin with:
smctl <subcommand>
ショートカット | サブコマンド | 説明 |
---|---|---|
cert | 証明書を管理します。 | |
creds | OS の資格情報ストアの DigiCert® Software Trust Manager 資格情報を管理します。 | |
GPG鍵ペアとキーリングを管理します。 | ||
View and confirm the validity of the credentials and tools configured. For Windows and Linux, run: smctl healthcheck For macOS, run: ./smctl-mac-x64 healthcheck | ||
Manage HSMs mapped to your Software Trust Manager account. | ||
kp | 鍵ペアを管理します。 | |
ログを管理します。 | ||
manual | Signing Managerのコマンドラインインターフェイスの最新の man ページを生成します。デフォルトでは、現在のディレクトリの下の man-pages ディレクトリにマニュアルページファイルが作成されます。 | |
Manage notarizations for Apple binaries. This command is only available on macOS. | ||
rel | リリースを管理します。 | |
sc | Manage scans powered by ReversingLabs. | |
署名、検証、削除を行います。 | ||
ユーザーデータを取得します。 | ||
Windows OS特有のコマンド |
Flags
Flags are used to modify the behavior of a subcommand by specifying parameters. Apply these flags to the subcommands above when using SMCTL.
Shortcut | Flag | Description |
---|---|---|
-v | --version | This flag displays the version of SMCTL. |
Not applicable | --dir string | This flag specifies the directory where the man pages will be written, with the default being man-pages/. Format: --dir="<value>" |
-h | --help | This flag displays help information for SMCTL. |
Not applicable | --description | This flag:
|
Not applicable | --desc-url | This flag:
|
What signing tools can SMCTL integrate with?
SMCTL integrates with and enables secure hash-based signing with the following signing tools while maintaining key protection, permission-based access and reporting all signing activities:
Download SMCTL
In the DigiCert® Software Trust Manager menu, go to Resources > Client tool repository.
Select your operating system.
Click the download icon next to Signing Manager Controller (SMCTL).
Set up environment variables
Follow the instructions in one of the following articles based on the operating system you will use to sign:
Verify connection
To verify that your client can properly authenticate to the DigiCert® Software Trust Manager service:
Open smctl.exe.
For Windows® and Linux®, run:
smctl healthcheck
For macOS, run:
./smctl-mac-x64 healthcheck
Obtain latest versions of SMCTL and other client tools
Review the following table to understand how to obtain the latest version of SMCTL and other client tools:
SMCTL or client tools | Sample command |
---|---|
SMCTL (with auth) | |
SMCTL (without auth) | |
JCE | |