Instructions for How to Install Your Standard Code Signing Certificate

After purchasing a standard code signing certificate, DigiCert validates your information and sends you an email that contains a link to install your code signing certificate.

*Sun Java Note: If your certificate was keyed for the Sun Java Platform, your code signing certificate installation process is different than the one described on this page. Please see Java Code Signing Certificate Set Up and Usage Guide.

Code Signing Certificate Installation Process

  1. Certificate Requestor Receives Email from DigiCert

    The certificate requestor of the new or reissued code signing certificate is sent an email with one of the following titles:

    • Subject: Create Your DigiCert Code Signing Certificate (Order #)

    • Subject: Reissue Your DigiCert Code Signing Certificate (Order #)

    The email contains a link that lets you create/reissue and install your code signing certificate.

    Note: From the date that the email is sent, you have thirty days to create or reissue your code signing certificate. If thirty days pass and you have not created or reissued your certificate, you will need to reissue/rekey your code signing certificate so that we can approve it again. See Reissue or Re-Key Your Code Signing Certificate.

  2. Follow the Link in the DigiCert Code Signing Certificate Email

    On the computer to which you want to install your code signing certificate, copy and paste the creation link from the email in Internet Explorer*, Chrome, or Safari**. When you open the link, the certificate is installed to the current user's personal certificate store for Windows or the login keychain for Mac.

    **Browser Note: Because the certificate needs to be installed at the Operating System (OS) level, rather than the browser level, we recommend that you open the link in Internet Explorer, Chrome, or Safari. If you open the link in another browser (like Firefox), the certificate will be installed at the browser level rather than the OS level. You will then have to export the certificate from the browser to use it.

    *IE Note: If you open the link in Internet Explorer, you receive a Web Access Confirmation warning. Click Yes to continue.

  3. Generate and Install Your Code Signing Certificate

    On the Generate your DigiCert Code Signing Certificate page, click Generate Certificate to create and install your code signing certificate.

    When you click Generate Certificate, the following automatically happens:

    • First, your browser creates a private key and CSR. The private key is stored in the backend of your browser and the CSR is sent to DigiCert.

    • Next, DigiCert receives the CSR and sends files back to the browser for installation.

    • Finally, the certificate files are automatically installed to the browser’s Personal Certificate store.

  4. Code Signing Certificate Installed

    Your Code Signing Certificate is now installed to the Personal Certificate Store of your browser.

    Windows - If you used IE or Chrome to install your certificate, the certificate is also placed in the Personal Certificate Store of your Computer Account in the MMC. Firefox installs the certificate at the browser level.

    Mac - If you used Safari or Chrome to install your certificate, the certificate is the login keychain. Firefox installs the certificate at the browser level.

    (Windows) Verifying Your Code Signing Certificate Installation
    (Mac) Verifying Your Code Signing Certificate Installation

  5. Ready to Sign Your Code

    Now that you have installed your Code Signing Certificate, you can use it to sign your code. For code signing instructions, please see our Code Signing Support & Tutorial page.

  6. Export Code Signing Certificate

    If necessary, you can export your Code Signing Certificate as a .pfx file (Windows) or as a .p12 file (Mac and Firefox).

    (Windows) Exporting Your Code Signing Certificate
    (Mac) Exporting Your Code Signing Certificate.


Get code signing certificates for just $178/year

Buy Now