How to Install Sectigo (Comodo) Code Signing Certificate (standard or EV) on the token

Upon successful validation, the Certificate Authority will send your Code Signing certificate and key to the address provided during enrollment. Yes, the Code Signing certificate(standard or EV) is physically sent via a mail carrier like FedEx or UPS due to security requirements that mandate all Code Signing private keys be kept off electronic devices to ensure the highest level of security.

Installing SafeNet Authentication Client

To install the necessary software, refer to the letter from the Certificate Authority, which includes a URL to access and install the SafeNet Authentication Client. Download and run the installer suitable for the device you plan to use for signing.

Follow the installation instructions, and once complete, restart your computer to ensure the SafeNet Authentication Client is properly installed. After installation, proceed with the steps below to use your Code Signing certificate.

Insert Your Token

At this stage, your SafeNet Authentication Client should recognize the Smart Card or USB Token and display the token details within the application.

Changing the Password

Although not mandatory, it is advisable to select “Change Token Password.” This opens the interface to update the token’s password. Using the password received via email from the Certificate Authority, enter the current password and then set a new unique password meeting SafeNet's security standards.

Collecting the Certificates

To collect the certificate needed for signing your application, click the “Gear” icon.

This will change the interface to display a sidebar with available tokens and drop-down options. Navigate through these until you find your company’s specific certificate, as shown in the example below.

At this point, you’re ready to start signing your application using your Code Signing certificate!