I bought a certificate for my program.
The website I bought it from sent me a .cer file (43-some-really-long-name-9962812767788.cer). No additional files were sent, but I am almost 100% sure that I do not need anything else.
When I click on this .cer file, there is information such as:
- for: (my details)
- by: Certum Code Signing CA
- Expires: 2014-10-24
All this information seems beautiful.
I have my .exe file that I want to sign with it (for example, when a user runs it as an administrator in Windows, he will be able to see the certificate information).
I found that I can use the signtool.exe file for it, but it always returns an error in which a certificate that meets all the criteria was not found.
So, how to sign my program (add .cer to my .exe) using only the .cer file (and all the files that I can create from this .cer file)?
I have no experience in certification of certificates, .cer and all certificates, so please consider this during the response (I am a simple person ...;)
So far I have installed (I think I did it right) .cer in the repository of trusted root certificate authorities on your computer, according to the MSDN Blog :
- Start-> Run β MMC
- File β Add / Remove Sanp to ...
- In the Add or Remove Snap-in window, select Certificates and click Add>. Select "Computer Account" and click "Next."
- Select "Local Computer" and click "Finish."
- Open Trusted Root Certificate Authorities Owners in the left pane and click Certificates, as shown in Figure 7. Then, right-click in the right pane of the window and select All Tasks β Import.
- Import the .cer file you created and install it.
I really see my guest in the MMC: 
However, I do not know how to use signtool.exe correctly. Command:
Signtool sing /v /t http://timestamp.verisign.com/scripts/timstamp.dll /n CER_NAME_HERE FileToSign.exe
Failure because I do not know what "CER_NAME_HERE" is for my certificate.