Microsoft SDK for Java

Signcode Options

This section describes signcode command-line options.

/a <algorithm>

Specifies the hashing algorithm for signing; can be one of <md5 | sha1>. The default is md5.

/c <file>

Specifies the software publishing certificate file.

/cn <name>

Specifies the common name of the certificate.

/I <info>

Specifies where to get more information on content (usually a URL).

/j dllname

Specifies the name of the DLL that provides attributes of the signature.

/jp <level>

Specifies the level of permissions to encode in the cabinet file. This must occur immediately after the /j parameter. You can use any of the following flags.

Low Medium High
LowX MediumX HighX

If the string is not one of these six flags, it is accepted as the name of a .ini file that gives the permissions to encode. You can manually create this .ini file following the example provided by the sample permissions .ini file Alternatively, use the piniedit tool to automatically generate the .ini file. For more details on custom permissions, see Security and the Java Permissions .ini Values Reference.

If the /jp option is not specified, a default level of LowX will be used.

/k <keyname>

Specifies the key container name.

/ky <keytype>

Specifies the key type.

/n <name>

Specifies the text name that represents the content of the file to be signed.

/p <provider>

Specifies the name of the cryptographic provider on the system.

/r <location>

Specifies the location of the certificate store in the registry; can be either <HKEY_LOCAL_MACHINE | HKEY_CURRENT_USER>. The default is HKEY_CURRENT_USER.

/s <store>

Specifies the store containing certificates (the default to my+root+ca+spc).

/sp <chain|spcstore>

Specifies whether to add all the certificates in the chain (chain), or add them until one certificate in the chain is from the SPC store (spcstore). The default is spcstore.

/spc <file>

Specifies the SPC file containing software publishing certificates.

/t <URL>

Specifies the time stamp server's http address.

/tr <number>

Specifies the number of time stamp trials until success; defaults to 1.

/tw <number>

Specifies the delay in number of seconds between each time stamp. Defaults to 0 (zero).

/v <pvkfile>

Specifies the name of the PVK file containing the private key.

/x

Time stamps the file; does not sign it.

/y <type>

Specifies the cryptographic provider type to use.

/$ <authority>

Specifies the signing authority of the certificate; can be either <individual | commercial>. The default is using the certificate's highest permission.

/?

Displays signcode usage information including a list of available options.

© 1999 Microsoft Corporation. All rights reserved. Terms of use.