Creating a digital signature certificate

Use the following procedure to create a digital signature certificate using ClickOnce:

  1. Go to Start > Windows System > Run.

    The Run dialog appears.

  2. In the Open box, enter mmc.exe, and then click OK.

    The run dialog with mmc.exe entered in the open box with the ok button circled.

    The Console dialog appears.

  3. From the File dropdown menu, select Add/Remove Snap-in...

    The file dropdown menu with add or remove snap-in selected.

    The Add or Remove Snap-ins dialog appears.

  4. In the Available snap-ins columns, select Certificates, click Add, and then click OK.

    The add or remove snap-ins dialog with certificates selected, and the add and ok buttons circled.

    The Certificates snap-in dialog appears.

  5. Select My user account, and then select Finish.

    The certificates snap-in dialog with my user account selected, and the finish button circled.

  6. Click OK to close the Add or Remove Snap-ins dialog.

  7. Expand the Certificates folder, right-click on the Personal folder, select All Tasks > Request New Certificate.

    The console dialog with personal selected and all tasks and request new certificates selected.

    The Certificate Enrollment dialog appears.

  8. Click Next. The Certificate Enrollment dialog appears.

  9. Select the Code Signing checkbox, expand Details, and then click Properties.

    The certificate enrollment dialog with the code signing checkbox selected, the expand details icon circled and selected, and the properties button circled.

    The Certificate Properties dialog appears.

  10. Complete the following tabs:

    1. On the General tab, enter a Friendly name and Description in the appropriates boxes.

      The certificate properties dialog displaying the general tab with the friendly name and description boxes circled.

    2. On the Subject tab, select Common name from the Type dropdown menu.

    3. In the Value box, enter a value, and then click Add.

      The certificate properties dialog displaying the subject tab with the subject name, type, and value circled.

    4. On the Extensions tab, expand Extended Key Usage (application policies), and verify that Code Signing is in the Selected options box.

      Note: If Code Signing is not in the Selected options box, select it from the Available options, and then click Add to add it to the Selected options.

      The certificate properties dialog displaying the extensions tab with the extended key usage, application policies selected to show that code signing is in the selected options box.

    5. On the Private Key tab, extend Key options, and select Make private key exportable.

    6. Click OK to close the Certificate Properties dialog.

      The certificate properties dialog displaying the private key tab with make private key exportable selected, and the ok button circled.

  11. Click Enroll to enroll the certificate.

    The certificate enrollment dialog displaying the request certificates dialog with the enroll button circled.

  12. In the Console dialog, right-click on the certificate (that you just enrolled) and select All Tasks > Export.

    The console dialog displaying with the certificate that you just enrolled select, and the all tasks, export selected.

  13. In the Certificate Export Wizard dialog that appears, select Yes, export the private key, and then click Next.

    The certificate export wizard dialog displaying with yes, export the private key elected and the next button circled.

  14. Select Enable certificate privacy, and then click Next.

    Note: The Include all certificates in the certification path if possible checkbox should already be selected. If it is not already selected, select it before clicking Next.

    The certificate export wizard dialog displaying with enable certificate privacy selected and the next button circled.

  15. Select the Password checkbox, enter and confirm your password, and then click Next.

    The certificate export wizard dialog displaying with the password checkbox selected, and the password and confirm your password boxes circled, and next button circled.

  16. Click Browse to select the file name location, and then click Next.

    The certificate export wizard dialog displaying with the browse button and file name location circled, and next button circled.

  17. Click Finish, and then click OK to close the wizard.

    The certificate export wizard dialog displaying with the finish button and ok button circled.

    The digital signature certificate has been created.