Skip to content
/ certmgr Public

Utility allows you to install PFX keypairs for Strong Name signing inside a container. It is useful for MSBuild / Visual Studio and works as a replacement for sn.exe (Strong Name manager) and the common issue of registering keypairs with your MSBuild container.

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Aetherinox/certmgr

BranchesTags

Repository files navigation

Certificate Manager

Version Downloads Repo Size Last Commit)


About

certmgr is a utility which aims to replace sn.exe (the Strong Name Utility).

The primary use behind it is an error that people will often find themselves running across when attempting to sign their Visual Studio projects:

Warning

Cannot import the following key file: your_keyfile.pfx. The key file may be password protected.

To correct this, try to import the certificate again or manually install the certificate to the Strong Name CSP with the following key container name: VS_KEY_ABCDEF1234567000


The above error can occur either when you're attaching a new keypair to your project, or wanting to replace / update an existing keypair.

Typically to correct this, you would utilize sn.exe and execute the command:

sn -i <PFX_KEYFILE> <CONTAINER_ID>

However, many users (and myself) have ran across the issue that this command does not rectify the issue.

certmgr.exe makes registering your certificate easier by executing

./certmgr.exe --install your_keyfile.pfx "CERT_PFX_PASSWORD" VS_KEY_XXXXXXXXXXXXXXXX

You should then be able to successfully build your project and sign it with your new key.


Full commands listed below with examples



Dependencies

This console application has a few dependencies depending on your needs.


Dependency Description
certutil
Certutil is required for CertMgr Delete and List functionality.

Certutil should come with windows and is part of the Windows Certificate service.

You should already have it with your operating system.

signtool
The Sign Tool is required if using the CertMgr Sign functionality.

Can be installed from the Windows 10 SDK / Windows 11 SDK / Windows Kit, or Visual Studio.



Commands

The following information displays the command syntax for certmgr.exe


Flags

Flag Description
-n, --info Show information about a specified PFX keyfile
-l, --list List all certificates and containers
-i, --install Install PFX keyfile and register with container
-s, --sign Sign binary / dll with key using signtool
-d, --delete Delete keyfile for specified container id
-x, --deleteall Delete all keys for all containers

Syntax

Command Description
certmgr -n <PFX_FILE> Show information about a specified PFX keyfile
certmgr -i <PFX_FILE> <PFX_PASSWD> Install PFX keyfile
certmgr -i <PFX_FILE> <PFX_PASSWD> <CONTAINER_ID> Install PFX keyfile for Visual Studio project container
certmgr -l List all certificates
certmgr -d <CONTAINER_ID> Delete key for specified container id
certmgr -x Delete all keys for all containers
certmgr -s <PFX_THUMBPRINT> <FILE_TO_SIGN> Sign binary / dll with key using signtool


Previews

About

Utility allows you to install PFX keypairs for Strong Name signing inside a container. It is useful for MSBuild / Visual Studio and works as a replacement for sn.exe (Strong Name manager) and the common issue of registering keypairs with your MSBuild container.

Topics

visual-studio certificates x509 keypairs vs2022 strong-names strongnames sn-exe

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0.0 Latest
Jan 13, 2024

Packages

No packages published

Languages