8 Replies Latest reply on Mar 20, 2008 3:04 PM by hoseyhosey

    Code signing trouble with Verisign

      I had my IT department purchase a Verisign Authenticode signing cert for AIR app signing.

      Verisign produced a .pvk private key file, and certificate file that was exported from IE to .p7b format. I used Microsoft's pvk2pfx.exe tool to convert these to .pfx file that Flex Builder and adt tool should be able to read.

      But running adt -package -storetype pkcs12 -keystore mycert.pfx myapp.air my-app.xml . returns "Unable to build a valid certificate chain for the signer." error after entering cert password. In Flex Builder export release dialog, I get to the last stage and zero byte .air file is generated. (I ran both FB3 and adt under Max OS X 10.4.11)

      What am I doing wrong? Do I need to load Verisign code signing CA cert to Java CA keystore or what?

      Help with this is much appreciated, especially since AIR docs only cover Thawte cert usage :-|