Skip to main content

jarsignerとkeytooll–KSPの設定

Jarsigner および keytoolは、PKCS11の代わりに、オプションとして DigiCert​​®​​ Software Trust ManagerKSPで使用することができます。

Jarsigner and keytool can be used with the DigiCert​​®​​ Software Trust Manager KSP instead of PKCS11. However, we recommend Jarsigner signing with PKCS11.

Follow these instructions to sign directly using Jarsigner and securely reference your private key stored in Software Trust Manager. Alternatively, integrate Jarsigner with Signing Manager Controller (SMCTL) for simplified signing.

Prerequisites

署名

このコマンドは、DigiCertKSPを使用して jarに署名します。

Command:

jarsigner -keystore NONE -storetype Windows-My -signedjar <signed_file>.jar -sigalg SHA256withRSA -digestalg SHA-256 <jarfile> <keypair alias> -tsa http://timestamp.digicert.com           

Command sample:

jarsigner -keystore NONE -storetype Windows-My -signedjar example-signed.jar -sigalg SHA256withRSA -digestalg SHA-256 example.jar kp1 -tsa http://timestamp.digicert.com