Site icon SSL.com

How to Digitally Sign a Hardware Lab Kit (HLK) file using eSigner CKA

Hardware Lab Kit is a tool to test and prepare a kernel mode driver  for submission to Microsoft. Currently eSigner CKA also requires the HLKSigntool to be installed in order to be used within Microsoft’s HLK software 

eSigner CKA (Cloud Key Adapter) is a Windows application utilizing the CNG interface (KSP Key Service Provider) to enable tools like certutil.exe and signtool.exe to access the eSigner Cloud Signature Consortium (CSC) API for enterprise-level code signing. Functioning as a virtual USB token, it loads code signing certificates directly into the Windows certificate store.

eSigner CKA must first be installed and configured (user logged-in, and TOTP secret set) before running HLKSignTool.exe. 

Requirements

  1. Purchase an SSL.com Code Signing Certificate or Extended Validation (EV) Code Signing Certificate
  2. Enroll your code signing certificate in eSigner
  3. Download and install eSigner CKA

Steps to Sign

Step 1. Install and configure eSigner CKA

Step 2. Use HLKSignTool with the command line below

Command Line
HLKSignTool.exe certificate_serial “path_to_file”

Example:

HLKSignTool.exe 3364de1e9ed1882e963a89ff7a958e9d "A:\teet.hlkx"

If you have questions related to PKI and digital certificates, please contact us by email at Support@SSL.com, call 1-SSL-Certificate (1-775-237-8434), or simply click the chat button at the bottom right of this page. As always, thank you for choosing SSL.com!
Exit mobile version