Spotfire Ideas Portal
Due to regulation change by the CA/Browser Forum, code signing certificates issued by a CA (e.g. Sectigo) is shipped in a HSM (USB drive) and only available as an entity in the OS's certificate store on which the HSM is plugged in. The code signing certificates are no longer provided as a *.pfx file, nor it can be exported from the OS's certificate store.
The Package Builder needs a full path to the *.pfx file, in order to sign the spk, now due to above change this is no longer possible.
Please update Package Builder to utilize code signing certificates stored in the OS's certificate store so we can sign the spk.
This is urgent because the code signing certificate we are using has expired and the re-issued one only exists in OS's certificate store.
We need this for both Spotfire 12.0LTS and 14.0LTS.
Great! I didn't know that.
Confirmed existence for both 12.0 and 14.0 (even 10.10).
Signing with a locally installed certificate is possible when using the Package Builder console, see https://docs.tibco.com/pub/sfire_dev/area/doc/html/devdoc/topics/package_builder_console_parameter_reference.html (parameter localcert)