Hi Kiran and welcome to Advanced Installer.
So we would like to know what is your experience is with the certificate vendor (GlobalSign) and why quite a few of our customers choose to disable updating of certs.
I'm afraid we do not have to many details regarding this certificate vendor of why some users choose to disable the certs updating.
This may happen if the certificate you are using is issued by a certificate provider which is not in the Member List of the Windows Root Certificate Program
. In this case, to avoid this behavior you can try to import your certificate in the Certificate Store of the related target machines. Please take a look on the "Import a Certificate"
The core of the problem is that your Windows installation is unable to contact the certificate provider that can verify the installer’s security certificate. I'm afraid your options are very limited. Here is what you can try:
- 1-In order to prevent this in the future, you can use another certificate from another CA authority which is recognized by default by Windows (e.g. VerySign). You might find useful the following thread OT: Where to get Code Signing Certificate?
2-Ask your user to turn off digital signature checking
In order to turn off digital signature checking, you need to change some settings in the internet options.
- You can access these settings either via the Control Panel or Internet Explorer
- Start> Control Panel > Internet Options
- Internet Explorer> Click on Tools> Internet Options > Advanced
- From there, tick the box next to 'Allow software to run or to install even if signature is invalid'
- Click on the OK button to validate your choice.
If there is anything else I can help you with, please let me know.