signtool help

[mattaku]

I have a setup.exe which installs a program. I was asked to get rid of the
unknown publisher warning when users install our program. Someone got
Verisign mycredentials.spc & myprivatekey.pvk files for me. I can sign the
setup.exe using signtool's signwizard GUI, but I need to integrate this
process within our buildscripts (jscript). I've been trying to figure out
what the correct arguments would be to signtool, but have had no success.
This is the closest I get...

signtool sign /f mycredentials.spc /csp "Microsoft Strong Cryptographic
Provider" /k myprivatekey.pvk /d <myCompanyName> /sha1 <somehash> /v setup.exe

The following certificate was selected:
Issued to: <myCompanyName>
Issued by: VeriSign Class 3 Code Signing 2004 CA
Expires: 12/20/2006 3:59:59 PM
SHA1 hash: <somehash>

SignTool Error: The specified private key container was not found.

Number of files successfully Signed: 0
Number of warnings: 0
Number of errors: 1

HELP!!! Thanks.

Art

[mattaku]

now that the holidays are over... bump

[CC]

I have the same problem using the signtool for my pda code. The key files
work fine if I use the "Signtool signwizard". The signwizard does request my
private key password twice. Once after entering the privatekey & the 2nd
after clicking the "finish" button at the end of the wizard! This is a real
pita as our app has nearly 20 dll's, exe's, etc. + the cabs to sign for a
release.

[mattaku]

Can anyone help please? I've talked to Verisign and they "claim" they don't
know anything about how to use the command line version of signtool. Does
Microsoft & Verisign not get along? CC, did you get anywhere with this?

Art