What are CodeSign Certificates?
CodeSign certificates are used for all our binary files. To verify the CodeSign certificates are correct and up to date, the machine running the binaries (e.g. dll or exe files) requires access to specific URLs and domains.
White list requirements
We use Comodo as our third party CodeSign certificate authority. The following URL’s are required to verify our Comodo certification:
The Comodo Certificate Authority further advise that exact names of CRLs and certificates can change. Due to this we advise to whitelist the following domains:
Testing access to the CodeSign Certificate Authority URL's
To check whether CodeSign Certificate Authority is working please follow these instructions:
Go to a signed dll or exe, right click and select properties
Go to the Digital Signatures tab, select the SnapComms certificate and click details
In the details click View Certificate
In the certificate go to details and click Copy to File
Follow the wizard to export as DER certificate file, e.g. snap.cer
Open a command line and CD to the folder where the snap.cer is located
Use “certutil –URL snap.cer” to bring up the certutil GUI
On the right hand side you will see a “Retrieve” box
Use the three radio buttons to retrieve all the three different items: Certs, CRLS and OCSP. All of these should work instantly and succeed.