How to sign a Installshield file?

DistillingExperts used Ask the Experts™

I am generating an installation file using Installshield. Inside this file I have a componet that requires a key for the end user. When trying to install my software with a Janus component, users receive the following message:
"This application is using an unregistered component from Janus Systems."

Is there a possibility to sign this component in the moment I am creating it in Installshield?

I have the key for the installation when I use Janus in development environment, but wouldn't like my user to have to install it and also to have the key for the third-party software (Janus).

Thank you in advance.

Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
One thing you need to clarify is, is this message comes out indeed during the installation, or from the already installed application when it's launched? very big difference.

I don't think this has anything to do with signing. The right approach is probably to fully figure out when registration of Janus component is required, when it's not, and make sure that your software is using it in the way that does not require registration.

Usually, 3rd party components require the license in order to be used in design mode, but not in runtime mode, so when you deploy the application using the component to the users, they don't need to do anything.


Thanks for your message.

Now I am getting another message only in Windows 7:
"Do you want to allow the following program from an unknown publisher to make changes to this computer"?

Any clue on how do I remove this message?

Thank you in advance.
_This_ is the type of the problem that indeed can be affected by signing the installation by certificate obtained from public trusted authority. See for more information.

The following link

provides the algorithm of what UAC is looking at when the setup is launched. As you can see however, when you sign the installation, UAC will still warn the user, only then it will tell who has signed it.

It should be noted that the fact that specific product has been signed by digital signature, does help in establishing the identity of the author of the product, however it does not certify that the product is good, not malicious, etc. (other than the assumption that hackers usually tend to remain anonymous). The article from Wikipedia I linked above also mentions this.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial