Posts: 15
Joined: Mon Aug 17, 2015 4:47 pm

Updater elevating problem with changed code signing certificate

We use the updater feature with "Support Service". So users can update without elevating.
Unfortunately this does only work if the code sign certificate of updater is same as the new setup, otherwise uac prompt for elevating is shown.
Our certificate (Azure trusted signing) is only valid for one year.
So if the certificate is reissued from azure, updating without elevating is not possible. Do you have any hint to handle this?
Thank you
Kind regards,
Posts: 1085
Joined: Tue Jul 13, 2021 11:29 am
Contact: Website

Re: Updater elevating problem with changed code signing certificate

Hello Derrin,

If you migrate to a new certificate that has a changed Subject, please check the Installing only digitally signed updates article.

When you renew your certificate you should always check its Subject and make sure it hasn't changed. If so, then you must implement the workaround solution exposed in "Migrating to a new certificate" section. This solution is only available if the old certificate has not yet expired.

Let us know if you have any questions.

Best regards,
Liviu Sandu - Advanced Installer Team
Follow us: Twitter - Facebook - YouTube

Return to “Common Problems”