Home

Need some clarity in how offical vendor should sign their applications

%3CLINGO-SUB%20id%3D%22lingo-sub-916491%22%20slang%3D%22en-US%22%3ENeed%20some%20clarity%20in%20how%20offical%20vendor%20should%20sign%20their%20applications%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-916491%22%20slang%3D%22en-US%22%3E%3CP%3EHi%2C%20we%20are%20starting%20to%20get%20applications%20delivered%20from%20our%20vendors%20as%20MSIX%20packages.%20Then%20certificates%20they%20are%20signed%20with%20play%20a%20role%20I%20guess.%26nbsp%3B%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EHow%20will%20this%20work%3F%20Which%20certificates%20should%20be%20used%2C%20to%20avoid%20end%20customers%20to%20have%20to%20add%20lots%20of%20certificates%3F%3C%2FP%3E%3C%2FLINGO-BODY%3E
JohnInge
New Contributor

Hi, we are starting to get applications delivered from our vendors as MSIX packages. Then certificates they are signed with play a role I guess. 

 

How will this work? Which certificates should be used, to avoid end customers to have to add lots of certificates?

1 Reply

@JohnInge 

 

Here is a list of trusted certificates that are included in Windows:  https://docs.microsoft.com/en-us/security/trusted-root/participants-list

 

If you (or a vendor) are repackaging they can use any one of these authorities without needing to add new root certificates.   If the apps are being repackaged you can also leverage a root from your Azure AD tenant.  More details here: https://docs.microsoft.com/en-us/windows/msix/package/signing-package-device-guard-signing

 

Using Azure AD tenant does require the 20H1 insider SDK.

 

John

Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
46 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
29 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies