## Digitally Sign Adobe AIR Applications

Applications that are not digitally signed cannot be run on Adobe AIR. Implementing a DigiCert code signing certificate will allow your users to run applications that you create or modify.

Before you can sign your code for AIR, you will want to export your code signing cert to a .pfx file (a certificate and private key file combined into one) if you do not have it in that format already. Most DigiCert users will not automatically have their certificate as a .pfx if they used one of certificate creation or installation tools, and the certificate was installed directly through the web browser.

If you have a .pfx file already, skip the following 2 steps.

## Export Your Certificate to a PFX file

1. If you used Internet Explorer - Internet Explorer will automatically place the new code signing certificate into the Windows store. To export from the certificate store, just go to Start > Run > MMC, then File > Add/Remove Snap In > Certificates > Add > My user account > Finish, then OK. Then browse to Certificates > Personal > Certificates, and you should see a list of all personal certificates installed for your user. Right click your code signing certificate, go to "All Tasks" then Export.

Following the wizard to export your certificate as a PFX should be straightforward. If you do not have the option to export the private key, you will need to request a new certificate, as your PFX file will need to include the private key. Make sure not to forget the password that you select during this process.

2. If you used Mozilla Firefox - Open Firefox, then go to Tools > Options > Advanced > then click the Encryption tab, and then View Certificates. You should see your certificate listed under Your Certificates. Click your certificate and choose to Backup.

## Sign your Application Using the PFX file

Sign your AIR application using either the command-line program AIR Developer Tool (ADT) or the GUI option listed below.

Signing an AIR Application Using ADT (CLI Option)

1. Open a command prompt with elevated privileges (right-click to run as administrator) and navigate to the source directory of your application, where the application.xml file is located (you will want to make sure the .pfx file used for signing is not located in the source directory).

2. Now run the following command at the command line modifying the red text to match your filenames:

 adt -package -storetype pkcs12 -keystore "c:\path\to\your\certificate.pfx" "c:\path\to\your\file.air" "application.xml" 
3. You will be asked to enter the password associated with the .pfx that you created earlier. Enter that when prompted.

AIR Application Signing using Flash (GUI Option)

1. Open the program you are using to sign the AIR document according to Adobe documentation you can use Adobe Flash Builder 4.5, Adobe Flash CS 5.5 Professional or Flex SDK.

2. Select Adobe AIR Settings (this will list a number based on the version of AIR you are using).

3. Go to the signature tab and select 'Use a code signing certificate (.p12, .pfx)' browse to the file, enter your password and click Publish.