Hi Ed,

I want to sign my code with an EV certificate but I don't know if I have to 
change my configuration:
Jenkins master is on a windows server on a Virtual Machine of our provider.
To build our code we use a VM windows 8.1 and a real Mac.
To avoid multiple computer, the  VM windows 8.1 is a VMWare image running 
on the Mac OS.
When I plug the token on the mac, I can tell VMWare to plug the token on 
the virtual machine.

Now on jenkins side, the windows slave is connected with JavaWebStart and I 
installed a service.

I have the same error as you.

SignTool Error: No certificates were found that met all the given criteria.


What is slave-agent.jnlp you think that could be the problem?

or I must have windows 8.1 on a real computer?


Thanks

-Quentin



Le jeudi 27 août 2015 17:55:57 UTC+2, Ed of the Mountain a écrit :
>
> Solved.
>
> Disable jenkins service and replace with slave-agent.jnlp.
>
> Yay! I finally have automatic EV code signing!
>
> -Ed
>
>
> On Thursday, August 27, 2015 at 9:51:29 AM UTC-5, Ed of the Mountain wrote:
>>
>> When I try to code sign in my Jenkins job I receive a SignTool error:
>>
>>
>> c:\jenkins\workspace\codesign-windows>
>>
>> signtool sign /t http://timestamp.digicert.com /n "Acme Inc." code.exe 
>>
>> SignTool Error: No certificates were found that met all the given criteria.
>>
>>
>> I am using a DigiCert Extend Validation ( EV ) USB token that requires the 
>> USB token be connected to the build machine.  This works fine when logged on 
>> as normal user.
>>
>>
>>    - I am running Jenkins as a Windows service.
>>    - Service Log On is set to Local System account.
>>    - Service is *allowed to interact with desktop.*
>>
>>
>>
>> When I logon as a normal user to the build machine, it works fine.
>>
>>
>> 1 - signtool sign /t http://timestamp.digicert.com /n "Acme Inc." code.exe
>>
>> 2 - This triggers a pop-up "Token Logon" dialog that requires user 
>> interaction
>>
>> 3 - I have a separate "Token Logon" watcher that finds the WIndows ID and 
>> enters password.
>>
>> 4 - Code is signed automatically
>>
>>
>> C:\jenkins\workspace\codesign-windows>signtool sign /t 
>> http://timestamp.digicert
>> .com /n "The Charles Machine Works, Inc." token-logon.exe
>> Done Adding Additional Store
>> Successfully signed: token-logon.exe
>>
>>
>> Any suggestions to try are much appreciated,
>>
>>
>> -Ed
>>
>>

-- 
You received this message because you are subscribed to the Google Groups 
"Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
To view this discussion on the web visit 
https://groups.google.com/d/msgid/jenkinsci-users/db1bc4ae-fb2b-4811-b5db-9b1610cba74e%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

Reply via email to