Guest solboy Posted December 29, 2008 Posted December 29, 2008 Hi everyone: My question is the following. I've hundreds of macros signed with a certificate from my own Microsoft CA. The certificate is just valid till next January 14th. I would like to renew the certificate so I had not to sign all macros again. What do I have to do so I can renew the certificate without having to sign all macros again?? It's very important for me because it's a lot of work signing all macros again Thanks in advance Quote
Guest Brian Komar \(MVP\) Posted December 29, 2008 Posted December 29, 2008 When you signed the macros, did you apply a timestamp to the signature. I do not think so, so you are looking at having to re-sign the macros. A renewed certificate will have a different thumbprint and serial number (even if you renew with the same key pair) Brian "solboy" <crespo_santamaria@hotmail.com> wrote in message news:7561284D-D713-4425-A8E3-3946E54968DD@microsoft.com...<span style="color:blue"> > Hi everyone: > > My question is the following. I've hundreds of macros signed with a > certificate from my own Microsoft CA. The certificate is just valid till > next January 14th. I would like to renew the certificate so I had not to > sign all macros again. What do I have to do so I can renew the certificate > without having to sign all macros again?? > > It's very important for me because it's a lot of work signing all macros > again > > Thanks in advance </span> Quote
Guest solboy Posted December 29, 2008 Posted December 29, 2008 Thanks Brian How can I apply a timestamp when I sign a macro?. Can't I do anything else to avoid signing again macros???. If I apply a timestamp, is that timestamp for ever???. Can I apply a timestamp forever??? Thanks in advance "Brian Komar (MVP)" <brian.komar@nospam.identit.ca> escribió en el mensaje de noticias:OA8Pg9caJHA.5440@TK2MSFTNGP02.phx.gbl...<span style="color:blue"> > When you signed the macros, did you apply a timestamp to the signature. > I do not think so, so you are looking at having to re-sign the macros. > A renewed certificate will have a different thumbprint and serial number > (even if you renew with the same key pair) > > Brian > > "solboy" <crespo_santamaria@hotmail.com> wrote in message > news:7561284D-D713-4425-A8E3-3946E54968DD@microsoft.com...<span style="color:green"> >> Hi everyone: >> >> My question is the following. I've hundreds of macros signed with a >> certificate from my own Microsoft CA. The certificate is just valid till >> next January 14th. I would like to renew the certificate so I had not to >> sign all macros again. What do I have to do so I can renew the >> certificate without having to sign all macros again?? >> >> It's very important for me because it's a lot of work signing all macros >> again >> >> Thanks in advance</span> > </span> Quote
Guest Brian Komar \(MVP\) Posted December 30, 2008 Posted December 30, 2008 If you side the macros with the SDK, the Signtool utility allows you to apply a time stamp to the digital signature. The time stamping service (you need to purchase a hardware device or subscribe to a time stamping service on the Internet), will validate that the applied signature was valid - at the time of time stamping. This allows code to be trusted even if the code signing certificate is revoked, becomes time invalid, etc. Just search on code signing or check out chapter 25 in the PKI 2008 book I wrote from MS PRess Brian "solboy" <crespo_santamaria@hotmail.com> wrote in message news:elYuKMdaJHA.1328@TK2MSFTNGP02.phx.gbl...<span style="color:blue"> > Thanks Brian How can I apply a timestamp when I sign a macro?. Can't I do > anything else to avoid signing again macros???. If I apply a timestamp, > is that timestamp for ever???. Can I apply a timestamp forever??? > > Thanks in advance > > > > "Brian Komar (MVP)" <brian.komar@nospam.identit.ca> escribió en el mensaje > de noticias:OA8Pg9caJHA.5440@TK2MSFTNGP02.phx.gbl...<span style="color:green"> >> When you signed the macros, did you apply a timestamp to the signature. >> I do not think so, so you are looking at having to re-sign the macros. >> A renewed certificate will have a different thumbprint and serial number >> (even if you renew with the same key pair) >> >> Brian >> >> "solboy" <crespo_santamaria@hotmail.com> wrote in message >> news:7561284D-D713-4425-A8E3-3946E54968DD@microsoft.com...<span style="color:darkred"> >>> Hi everyone: >>> >>> My question is the following. I've hundreds of macros signed with a >>> certificate from my own Microsoft CA. The certificate is just valid till >>> next January 14th. I would like to renew the certificate so I had not to >>> sign all macros again. What do I have to do so I can renew the >>> certificate without having to sign all macros again?? >>> >>> It's very important for me because it's a lot of work signing all macros >>> again >>> >>> Thanks in advance</span> >> </span></span> Quote
Guest solboy Posted December 30, 2008 Posted December 30, 2008 And that book you wrote can you tell me the title so I can look for it? Thanks in advance "Brian Komar (MVP)" <brian.komar@nospam.identit.ca> escribió en el mensaje de noticias:F0C1B098-0026-4EC7-A618-65F91FB74E8A@microsoft.com...<span style="color:blue"> > If you side the macros with the SDK, the Signtool utility allows you to > apply a time stamp to the digital signature. > The time stamping service (you need to purchase a hardware device or > subscribe to a time stamping service on the Internet), will validate that > the applied signature was valid - at the time of time stamping. > This allows code to be trusted even if the code signing certificate is > revoked, becomes time invalid, etc. > Just search on code signing or check out chapter 25 in the PKI 2008 book I > wrote from MS PRess > Brian > > "solboy" <crespo_santamaria@hotmail.com> wrote in message > news:elYuKMdaJHA.1328@TK2MSFTNGP02.phx.gbl...<span style="color:green"> >> Thanks Brian How can I apply a timestamp when I sign a macro?. Can't I do >> anything else to avoid signing again macros???. If I apply a timestamp, >> is that timestamp for ever???. Can I apply a timestamp forever??? >> >> Thanks in advance >> >> >> >> "Brian Komar (MVP)" <brian.komar@nospam.identit.ca> escribió en el >> mensaje de noticias:OA8Pg9caJHA.5440@TK2MSFTNGP02.phx.gbl...<span style="color:darkred"> >>> When you signed the macros, did you apply a timestamp to the signature. >>> I do not think so, so you are looking at having to re-sign the macros. >>> A renewed certificate will have a different thumbprint and serial number >>> (even if you renew with the same key pair) >>> >>> Brian >>> >>> "solboy" <crespo_santamaria@hotmail.com> wrote in message >>> news:7561284D-D713-4425-A8E3-3946E54968DD@microsoft.com... >>>> Hi everyone: >>>> >>>> My question is the following. I've hundreds of macros signed with a >>>> certificate from my own Microsoft CA. The certificate is just valid >>>> till next January 14th. I would like to renew the certificate so I had >>>> not to sign all macros again. What do I have to do so I can renew the >>>> certificate without having to sign all macros again?? >>>> >>>> It's very important for me because it's a lot of work signing all >>>> macros again >>>> >>>> Thanks in advance >>></span></span> > </span> Quote
Guest Brian Komar \(MVP\) Posted December 30, 2008 Posted December 30, 2008 You really need to learn how to use google <G> http://www.microsoft.com/learning/en/us/books/9549.aspx Brian "solboy" <crespo_santamaria@hotmail.com> wrote in message news:4C31CB9D-2774-4963-A2DC-33823B589644@microsoft.com...<span style="color:blue"> > And that book you wrote can you tell me the title so I can look for it? > > Thanks in advance > > > > "Brian Komar (MVP)" <brian.komar@nospam.identit.ca> escribió en el mensaje > de noticias:F0C1B098-0026-4EC7-A618-65F91FB74E8A@microsoft.com...<span style="color:green"> >> If you side the macros with the SDK, the Signtool utility allows you to >> apply a time stamp to the digital signature. >> The time stamping service (you need to purchase a hardware device or >> subscribe to a time stamping service on the Internet), will validate that >> the applied signature was valid - at the time of time stamping. >> This allows code to be trusted even if the code signing certificate is >> revoked, becomes time invalid, etc. >> Just search on code signing or check out chapter 25 in the PKI 2008 book >> I wrote from MS PRess >> Brian >> >> "solboy" <crespo_santamaria@hotmail.com> wrote in message >> news:elYuKMdaJHA.1328@TK2MSFTNGP02.phx.gbl...<span style="color:darkred"> >>> Thanks Brian How can I apply a timestamp when I sign a macro?. Can't I >>> do anything else to avoid signing again macros???. If I apply a >>> timestamp, is that timestamp for ever???. Can I apply a timestamp >>> forever??? >>> >>> Thanks in advance >>> >>> >>> >>> "Brian Komar (MVP)" <brian.komar@nospam.identit.ca> escribió en el >>> mensaje de noticias:OA8Pg9caJHA.5440@TK2MSFTNGP02.phx.gbl... >>>> When you signed the macros, did you apply a timestamp to the signature. >>>> I do not think so, so you are looking at having to re-sign the macros. >>>> A renewed certificate will have a different thumbprint and serial >>>> number (even if you renew with the same key pair) >>>> >>>> Brian >>>> >>>> "solboy" <crespo_santamaria@hotmail.com> wrote in message >>>> news:7561284D-D713-4425-A8E3-3946E54968DD@microsoft.com... >>>>> Hi everyone: >>>>> >>>>> My question is the following. I've hundreds of macros signed with a >>>>> certificate from my own Microsoft CA. The certificate is just valid >>>>> till next January 14th. I would like to renew the certificate so I had >>>>> not to sign all macros again. What do I have to do so I can renew the >>>>> certificate without having to sign all macros again?? >>>>> >>>>> It's very important for me because it's a lot of work signing all >>>>> macros again >>>>> >>>>> Thanks in advance >>>></span> >> </span></span> Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.