{"id":4395,"date":"2025-05-06T04:45:42","date_gmt":"2025-05-06T04:45:42","guid":{"rendered":"https:\/\/signmycode.com\/resources\/?p=4395"},"modified":"2025-05-12T05:42:45","modified_gmt":"2025-05-12T05:42:45","slug":"how-to-sign-executables-using-digicert-keylocker-cloudhsm","status":"publish","type":"post","link":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm","title":{"rendered":"How to Sign Executables Using DigiCert KeyLocker CloudHSM?"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/signmycode.com\/blog\/what-is-digicert-keylocker-everything-to-know-about\">DigiCert KeyLocker<\/a> is a secure cloud-based HSM (Hardware Security Module) solution for safely storing your private code-signing keys and signing your software without ever downloading or exposing the keys.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">KeyLocker Compatibility<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">General Compatibility:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>DigiCert KeyLocker is designed to integrate smoothly into existing workflows.<\/li>\n\n\n\n<li>It supports various third-party signing tools via PKCS#11 and <a href=\"https:\/\/signmycode.com\/digicert-software-trust-manager\">Software Trust Manager<\/a> in DigiCert ONE (DC1).<\/li>\n\n\n\n<li>For full tool compatibility and supported formats, refer to <a href=\"https:\/\/docs.digicert.com\/en\/digicert-keylocker\/get-started\/signer-guide.html\">DigiCert\u2019s article<\/a> on signing Tool Integration on their official website.<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Third-party Tool Support:<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">KeyLocker works with popular signing utilities like:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>SMCTL (DigiCert)<\/li>\n\n\n\n<li>SignTool (Microsoft)<\/li>\n\n\n\n<li>Jarsigner (Oracle)<\/li>\n\n\n\n<li>Mage (Microsoft)<\/li>\n\n\n\n<li>NuGet<\/li>\n\n\n\n<li>Apsigner<\/li>\n\n\n\n<li>Osslsigncode<\/li>\n\n\n\n<li>Jsign<\/li>\n\n\n\n<li>OpenSSL<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">SignTool (32-bit version) \u2013 Supported File Types:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>.doc, .docm, .dot, .dotm, .msi, .cab, .exe, .dll<\/li>\n\n\n\n<li>.mpp, .mpt, .pot, .potm, .ppa, .ppam<\/li>\n\n\n\n<li>.pps, .ppsm, .ppt, .pptm, .pub<\/li>\n\n\n\n<li>.vdw*, .vdx*, .vsd*, .vsdm, .vss*, .vssm<\/li>\n\n\n\n<li>.vst*, .vstm, .vsx*, .vtx*, .wiz*<\/li>\n\n\n\n<li>.xla, .xlam, .xls, .xlsb, .xlsm, .xlt, .xltm<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">SignTool (64-bit version) \u2013 Supported File Types:<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li>.appx, .appxbundle, .arx, .cab, .cat, .cbx, .cpl<\/li>\n\n\n\n<li>.crx, .dbx, .deploy, .dll, .drx, .efi, .exe, .js<\/li>\n\n\n\n<li>.msi, .msix, .msixbundle, .msm, .msp, .ocx<\/li>\n\n\n\n<li>.psi, .psm1, .stl, .sys, .vbs, .vsix, .wsf, .xsn<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Requirements for Configuring DigiCert KeyLocker<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">To configure KeyLocker for secure code signing, you need:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>A valid <a href=\"https:\/\/signmycode.com\/digicert-code-signing\">DigiCert Code Signing<\/a> or <a href=\"https:\/\/signmycode.com\/digicert-ev-code-signing\">EV Code Signing Certificate<\/a> stored in KeyLocker.<\/li>\n\n\n\n<li>DigiCert KeyLocker Tools are installed on your system<\/li>\n\n\n\n<li>The pkcs11properties.cfg configuration file<\/li>\n\n\n\n<li>Java (for Jarsigner\/Jsign) or .NET SDK (for NuGet, Mage, etc.), as required<\/li>\n\n\n\n<li>Internet access to reach DigiCert timestamp servers<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Note:<\/strong> Before signing, it is required to set up credentials, client tools, and configure tools. <a href=\"https:\/\/signmycode.com\/resources\/how-to-configure-digicert-keylocker-on-windows\">Follow our detailed blog<\/a> for this.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Signing Files with Various Tools:<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Here are the sign-in options:<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">1.&nbsp;Sign with SMCTL (Recommended)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The SMCTL utility from DigiCert can sign with many tools, including using a key alias or key fingerprint with the PKCS11 config.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Signing Command:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>smctl sign --keypair-alias=key_123456789 --config-file=\"pkcs11properties.cfg\" --input=\"file.exe\"<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Verify Command:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>smctl sign verify --input=\"file.exe\"<\/code><\/pre>\n\n\n\n<h3 class=\"wp-block-heading\">2.&nbsp;Sign with DigiCert Click-to-Sign<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Click-to-Sign is DigiCert&#8217;s signing interface in your browser, allowing you to sign executables, Java archives, and installers all from your browser without needing to install any extra tools. This option is great for users who want an easy, GUI-based signing alternative and do not want to deal with a CLI.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">To sign your file using Click-to-Sign, <strong>log in to your DigiCert ONE account, click KeyLocker &gt; Sign Code, upload the target executable file (setup.exe), select your signing key and optional timestamping settings, and click &#8220;Sign&#8221;<\/strong>. After processing your signed file will be available for download.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>You can verify your signature using either the smctl sign verify command provided by DigiCert or Windows SignTool:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>signtool verify \/pa \/v signed_file.exe<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Recommended:<\/strong> <a href=\"https:\/\/signmycode.com\/resources\/how-to-configure-keylocker-for-click-to-sign-sign-windows-files\">How to Configure KeyLocker for Click-to-Sign &amp; Sign Windows Files?<\/a><\/p>\n\n\n\n<h3 class=\"wp-block-heading\">3.&nbsp;Sign with Third-Party Tools<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">DigiCert KeyLocker Cloud HSM supports multiple third-party tools. Check out one by one!<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Signing files with Jarsigner<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Jarsigner is a signing utility for .jar, .war, or .ear files that&#8217;s based on Java. It can work with KeyLocker through PKCS#11. To sign Java archives, you will need to have the pkcs11properties.cfg file configured to use the Java Runtime.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To sign, use the command:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>jarsigner -keystore NONE -storepass NONE -storetype PKCS11 -sigalg SHA256withRSA -providerClass sun.security.pkcs11.SunPKCS11 -providerArg &lt;path to pkcs11properties.cfg&gt; -signedjar &lt;path to signed file output&gt; &lt;unsigned file path&gt; &lt;keypair alias&gt; -tsa http:\/\/timestamp.digicert.com<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To verify the signed JAR file, use:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>jarsigner -verify \"&lt;path to signed jar file&gt;\" -certs -verbose &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\">Signing Files with Jsign<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Jsign is a Java-based alternative to SignTool used to sign Windows PE files (.exe, .dll) and Java applications (legacy version). With Jsign you will also be able to use KeyLocker through PKCS#11. It requires the alias and an optional timestamp server.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To sign a file using Jsign, run:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>java -jar &lt;path to jsign&gt; --keystore pkcs11.cfg --storepass changeit --storetype PKCS11 --alias &lt;keypair alias&gt; &lt;unsigned file&gt;<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To verify the signature, you can use:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>smctl sign verify --input \"file.exe\"<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\">Signing Files with Mage<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Mage.exe is a Microsoft tool that can be used to sign ClickOnce application manifests. Although Mage will not directly work with HSM\/PKCS#11, you can temporarily export the certificate (if allowed by DigiCert) or via KeyLocker using a custom provider.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To sign a ClickOnce manifest, use:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>mage -sign &lt;file_name&gt; -CertFile &lt;file_name&gt; -KeyContainer &lt;keypair_alias&gt; -CryptoProvider \u201cDigiCert Signing Manager KSP\u201d -a sha256RSA -TimestampUri http:\/\/timestamp.digicert.com<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\">You can test the deployment via the ClickOnce runtime or validate the file in Windows logs.<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>mage -verify &lt;file_name&gt;<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\"><a><\/a><strong>Signing files with NuGet<\/strong><\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">NuGet CLI is the best possible way to sign your .nupkg files (NuGet packages). Signing with the NuGet CLI supports signing using certificates from local store (or KeyLocker export or integration).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To sign a NuGet package, please run:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nuget sign &lt;package folder&gt; -Timestamper http:\/\/timestamp.digicert.com -outputdirectory &lt;output folder&gt; -Certificate Fingerprint &lt;SHA1 Thumbprint&gt; -HashAlgorithm SHA256 -Verbosity detailed -Overwrite<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>You can verify the signature using:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nuget verify -All package.nupkg<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Signing Files with Osslsigncode<\/strong><\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">Osslsigncode now supports signing Windows executables using .exe and .dll file formats using OpenSSL with the PKCS#11 interface. Osslsigncode also does a great job signing Windows executables with certificates from KeyLocker using PKCS#11.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To sign a file using osslsigncode please run:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>osslsigncode sign -pkcs11engine \/usr\/lib\/x86_64-linux-gnu\/engines-1.1\/libpkcs11.so -pkcs11module \/root\/smpkcs11.so -certs &lt;path to keypair certificate&gt; -key 'pkcs11:object=&lt;keypair alias&gt;;type=private' -in &lt;file to be signed&gt; -out &lt;output signed file&gt; -h sha256 -t http:\/\/timestamp.digicert.com<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To verify the signed file, use:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>osslsigncode verify -in &lt;signed file&gt;<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\">Signing Files with SignTool<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">SignTool is Microsoft&#8217;s native signing tool for signing Windows based code participating .exe, .dll, .msi, .sys. SignTool can be used with certificates from DigiCert KeyLocker as long as the certificate is exposed via local store or connected via PKCS#11.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To use SignTool to sign a file, please look at this example:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>signtool.exe sign \/csp \"DigiCert Signing Manager KSP\" \/kc &lt;keypair_alias&gt; \/f &lt;certificate_file&gt; \/tr http:\/\/timestamp.digicert.com \/td SHA256 \/fd SHA256 &lt;file_to_be_signed&gt;<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To verify the signature, run:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>signtool verify \/v \/pa &lt;signed file&gt;<\/code><\/pre>\n\n\n\n<h4 class=\"wp-block-heading\">Signing files with OpenSSL<\/h4>\n\n\n\n<p class=\"wp-block-paragraph\">OpenSSL can make use of PKCS#11 to sign a hash digest with a key stored in KeyLocker, which is useful for performing signing for custom formats or for signing firmware for embedded devices.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To create a digital signature using a KeyLocker key run:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>openssl dgst -engine pkcs11 -keyform engine -sha256 -sign \"pkcs11:token=KeyLocker;object=myKey;type=private\" -out file.sig file.exe<\/code><\/pre>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>To verify the file signature, use:<\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>openssl dgst -sha256 -verify pubkey.pem -signature file.sig file.exe<\/code><\/pre>\n\n\n\n<h2 class=\"wp-block-heading\">Conclusion<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Code signing is a necessity, not an option, in an expanding landscape of threats. Digicert&#8217;s KeyLocker CloudHSM can affordably and securely put code security in place enabling trust with users.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">By removing hardware dependencies and increasing automation, it is a solution for the 21st-century software developer and enterprise.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It does not matter if you are a one-person developer, devops engineer, or a member of an enterprise team- DigiCert KeyLocker makes secure code signing easier by protecting the compliance and ownership.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>DigiCert KeyLocker is a secure cloud-based HSM (Hardware Security Module) solution for safely storing your private code-signing keys and signing your software without ever downloading or exposing the keys. KeyLocker Compatibility General Compatibility: Third-party Tool Support: KeyLocker works with popular signing utilities like: SignTool (32-bit version) \u2013 Supported File Types: SignTool (64-bit version) \u2013 Supported&hellip; <a class=\"more-link\" href=\"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\">Read More <span class=\"screen-reader-text\">How to Sign Executables Using DigiCert KeyLocker CloudHSM?<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":4398,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[463],"tags":[603,604],"class_list":["post-4395","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cloud-code-signing","tag-keylocker-cloud-hsm","tag-signing-with-digicert-keylocker","entry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.3 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>How to Sign Executables using DigiCert KeyLocker CloudHSM?<\/title>\n<meta name=\"description\" content=\"Follow this tutorial to sign executables using DigiCert Key Locker with the multiple tools such as SMCTL and third party tools.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Sign Executables using DigiCert KeyLocker CloudHSM?\" \/>\n<meta property=\"og:description\" content=\"Follow this tutorial to sign executables using DigiCert Key Locker with the multiple tools such as SMCTL and third party tools.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\" \/>\n<meta property=\"og:site_name\" content=\"SignMyCode - Resources\" \/>\n<meta property=\"article:published_time\" content=\"2025-05-06T04:45:42+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-05-12T05:42:45+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2025\/05\/sign-file-using-digicert-keylocker.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"912\" \/>\n\t<meta property=\"og:image:height\" content=\"453\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Janki Mehta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@Sign_My_Code\" \/>\n<meta name=\"twitter:site\" content=\"@Sign_My_Code\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Janki Mehta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\"},\"author\":{\"name\":\"Janki Mehta\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#\\\/schema\\\/person\\\/2e80276fd34fd5439c04cd3cb96a389f\"},\"headline\":\"How to Sign Executables Using DigiCert KeyLocker CloudHSM?\",\"datePublished\":\"2025-05-06T04:45:42+00:00\",\"dateModified\":\"2025-05-12T05:42:45+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\"},\"wordCount\":940,\"publisher\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/sign-file-using-digicert-keylocker.webp\",\"keywords\":[\"KeyLocker Cloud HSM\",\"Signing with DigiCert KeyLocker\"],\"articleSection\":[\"Cloud Code Signing\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\",\"url\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\",\"name\":\"How to Sign Executables using DigiCert KeyLocker CloudHSM?\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/sign-file-using-digicert-keylocker.webp\",\"datePublished\":\"2025-05-06T04:45:42+00:00\",\"dateModified\":\"2025-05-12T05:42:45+00:00\",\"description\":\"Follow this tutorial to sign executables using DigiCert Key Locker with the multiple tools such as SMCTL and third party tools.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage\",\"url\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/sign-file-using-digicert-keylocker.webp\",\"contentUrl\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/sign-file-using-digicert-keylocker.webp\",\"width\":912,\"height\":453,\"caption\":\"Signing with KeyLocker Cloud HSM\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to Sign Executables Using DigiCert KeyLocker CloudHSM?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#website\",\"url\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/\",\"name\":\"SignMyCode - Resources\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#organization\",\"name\":\"SignMyCode\",\"url\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/wp-content\\\/uploads\\\/2021\\\/11\\\/logo1.png\",\"contentUrl\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/wp-content\\\/uploads\\\/2021\\\/11\\\/logo1.png\",\"width\":135,\"height\":86,\"caption\":\"SignMyCode\"},\"image\":{\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/Sign_My_Code\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/signmycode.com\\\/resources\\\/#\\\/schema\\\/person\\\/2e80276fd34fd5439c04cd3cb96a389f\",\"name\":\"Janki Mehta\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/74a1328bbec77f3a65123c2396050e61b60fe3831478ceb96b55e5a0fe44e370?s=96&d=blank&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/74a1328bbec77f3a65123c2396050e61b60fe3831478ceb96b55e5a0fe44e370?s=96&d=blank&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/74a1328bbec77f3a65123c2396050e61b60fe3831478ceb96b55e5a0fe44e370?s=96&d=blank&r=g\",\"caption\":\"Janki Mehta\"},\"description\":\"Janki Mehta is a Cyber-Security Enthusiast who constantly updates herself with new advancements in the Web\\\/Cyber Security niche. Along with theoretical knowledge, she also implements her practical expertise in day-to-day tasks and helps others to protect themselves from threats.\",\"sameAs\":[\"http:\\\/\\\/smcresources.ssltoolsonline.com\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How to Sign Executables using DigiCert KeyLocker CloudHSM?","description":"Follow this tutorial to sign executables using DigiCert Key Locker with the multiple tools such as SMCTL and third party tools.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm","og_locale":"en_US","og_type":"article","og_title":"How to Sign Executables using DigiCert KeyLocker CloudHSM?","og_description":"Follow this tutorial to sign executables using DigiCert Key Locker with the multiple tools such as SMCTL and third party tools.","og_url":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm","og_site_name":"SignMyCode - Resources","article_published_time":"2025-05-06T04:45:42+00:00","article_modified_time":"2025-05-12T05:42:45+00:00","og_image":[{"width":912,"height":453,"url":"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2025\/05\/sign-file-using-digicert-keylocker.webp","type":"image\/jpeg"}],"author":"Janki Mehta","twitter_card":"summary_large_image","twitter_creator":"@Sign_My_Code","twitter_site":"@Sign_My_Code","twitter_misc":{"Written by":"Janki Mehta","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#article","isPartOf":{"@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm"},"author":{"name":"Janki Mehta","@id":"https:\/\/signmycode.com\/resources\/#\/schema\/person\/2e80276fd34fd5439c04cd3cb96a389f"},"headline":"How to Sign Executables Using DigiCert KeyLocker CloudHSM?","datePublished":"2025-05-06T04:45:42+00:00","dateModified":"2025-05-12T05:42:45+00:00","mainEntityOfPage":{"@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm"},"wordCount":940,"publisher":{"@id":"https:\/\/signmycode.com\/resources\/#organization"},"image":{"@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage"},"thumbnailUrl":"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2025\/05\/sign-file-using-digicert-keylocker.webp","keywords":["KeyLocker Cloud HSM","Signing with DigiCert KeyLocker"],"articleSection":["Cloud Code Signing"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm","url":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm","name":"How to Sign Executables using DigiCert KeyLocker CloudHSM?","isPartOf":{"@id":"https:\/\/signmycode.com\/resources\/#website"},"primaryImageOfPage":{"@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage"},"image":{"@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage"},"thumbnailUrl":"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2025\/05\/sign-file-using-digicert-keylocker.webp","datePublished":"2025-05-06T04:45:42+00:00","dateModified":"2025-05-12T05:42:45+00:00","description":"Follow this tutorial to sign executables using DigiCert Key Locker with the multiple tools such as SMCTL and third party tools.","breadcrumb":{"@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#primaryimage","url":"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2025\/05\/sign-file-using-digicert-keylocker.webp","contentUrl":"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2025\/05\/sign-file-using-digicert-keylocker.webp","width":912,"height":453,"caption":"Signing with KeyLocker Cloud HSM"},{"@type":"BreadcrumbList","@id":"https:\/\/signmycode.com\/resources\/how-to-sign-executables-using-digicert-keylocker-cloudhsm#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/signmycode.com\/resources\/"},{"@type":"ListItem","position":2,"name":"How to Sign Executables Using DigiCert KeyLocker CloudHSM?"}]},{"@type":"WebSite","@id":"https:\/\/signmycode.com\/resources\/#website","url":"https:\/\/signmycode.com\/resources\/","name":"SignMyCode - Resources","description":"","publisher":{"@id":"https:\/\/signmycode.com\/resources\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/signmycode.com\/resources\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/signmycode.com\/resources\/#organization","name":"SignMyCode","url":"https:\/\/signmycode.com\/resources\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/signmycode.com\/resources\/#\/schema\/logo\/image\/","url":"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2021\/11\/logo1.png","contentUrl":"https:\/\/signmycode.com\/resources\/wp-content\/uploads\/2021\/11\/logo1.png","width":135,"height":86,"caption":"SignMyCode"},"image":{"@id":"https:\/\/signmycode.com\/resources\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/Sign_My_Code"]},{"@type":"Person","@id":"https:\/\/signmycode.com\/resources\/#\/schema\/person\/2e80276fd34fd5439c04cd3cb96a389f","name":"Janki Mehta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/74a1328bbec77f3a65123c2396050e61b60fe3831478ceb96b55e5a0fe44e370?s=96&d=blank&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/74a1328bbec77f3a65123c2396050e61b60fe3831478ceb96b55e5a0fe44e370?s=96&d=blank&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/74a1328bbec77f3a65123c2396050e61b60fe3831478ceb96b55e5a0fe44e370?s=96&d=blank&r=g","caption":"Janki Mehta"},"description":"Janki Mehta is a Cyber-Security Enthusiast who constantly updates herself with new advancements in the Web\/Cyber Security niche. Along with theoretical knowledge, she also implements her practical expertise in day-to-day tasks and helps others to protect themselves from threats.","sameAs":["http:\/\/smcresources.ssltoolsonline.com"]}]}},"_links":{"self":[{"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/posts\/4395","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/comments?post=4395"}],"version-history":[{"count":5,"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/posts\/4395\/revisions"}],"predecessor-version":[{"id":4413,"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/posts\/4395\/revisions\/4413"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/media\/4398"}],"wp:attachment":[{"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/media?parent=4395"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/categories?post=4395"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/signmycode.com\/resources\/wp-json\/wp\/v2\/tags?post=4395"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}