ticgums
asked on
How do I renew a code signing certificate in MS Certificate Services
A little over a year ago I enabled Microsoft Certificate Services on one of my servers for the purpose of creating code signing certificates. My intent was to allow a handful of people in my company to sign macros in Access and Excel so that users would not get security warnings when opening these applications. For the past year this has worked flawlessly. Now all of the Code Signing certificates are expired and I don't know how to renew them.
Is there a way to simpley change the expiration date so that all the certificates continue to work? Or do I need to create new certificates and resign all the macros?
Is there a way to simpley change the expiration date so that all the certificates continue to work? Or do I need to create new certificates and resign all the macros?
Paranormastic
Normally you would create a new code signing certificate. If you got it from a commercial CA you could buy one with a longer lifespan, if creating from your own CA you can duplicate the default code signing template so you can modify the validity period, if using a self-signed cert you can usually add a switch to the command to make a new one to specify the number of days it should be valid for.
ASKER
I'm creating it from my own CA. Even if I modify the code signing template I could only make it valid for 2 years (length of the CA validity) correct?
Regardless of how long the certificate is good for once it expires I have to request a new one and resign all of my code? Is there any way to avoid this?
Regardless of how long the certificate is good for once it expires I have to request a new one and resign all of my code? Is there any way to avoid this?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.