I would like my installers to be digitally signed when it is created. However the cert/key used to sign installers in my company is controlled and I would not have access to it.
Is it possible to create the installer normally, extract the MSI out, sign it using a separate process and repack it into a EXE? I have got step 1 and 2 down. Step 3 will be our own process and out of the scope of this question. This would be where my manager comes in with the cert/key. I need advice on step 4, if it is possible.
Thanks in advance!