SignTool installation without Windows Software Development Kit (SDK) installation

One way to perform code signatures is to use the SignTool command line tool. This is part of the Windows 10 Software Development Kit (SDK).

If you want to use the tool on a system without having to install Visual Studio or the Windows SDK, you can proceed as follows.

Do you know TameMyCerts? TameMyCerts is an add-on for the Microsoft certification authority (Active Directory Certificate Services). It extends the function of the certification authority and enables the Application of regulationsto realize the secure automation of certificate issuance. TameMyCerts is unique in the Microsoft ecosystem and is available under a free license. It can downloaded via GitHub and can be used free of charge.

First of all, the Windows SDK can be downloaded as an ISO file. The ISO file can then be opened with Windows Explorer. The required files can then be obtained from the "Installers" folder.

The following files are required:

  • Windows SDK Signing Tools-x86_en-us.msi
  • 4c3ef4b2b1dc72149f979f4243d2accf.cab
  • 685f3d4691f444bc382762d603a99afc.cab
  • e5c4b31ff9997ac5603f4f28cd7df602.cab
  • e98fa5eb5fee6ce17a7a69d585870b7c.cab

Afterwards SignTool can be installed by executing the MSI file (Windows SDK Signing Tools-x86_en-us.msi).

The SignTool is then located in the following location in the subfolder for the respective CPU architecture:

C:\Program Files (x86)\Windows Kits\10\bin\10.0.19041.0\x86

Related links:

External sources

en_USEnglish