Applying PFX Certificates for Signing Internal .NET Applications

Motivation

We have a number of tools we distribute internally that we want to ensure are signed (particularly ClickOnce applications).

The goals were:

  1. Anyone on the team could build the tools (including ClickOnce tools) and publish them.
  2. No one on the team has to go through manual steps: they ought to be able to sync and build.
  3. No dialog popups during the build (such as passwords).
  4. No trust issues when using the tools–Certificates are trusted.

Continue reading