DigiCert KnowledgeBase - Technical Support-hero

Knowledge Base

Understanding Signer Privileges in KeyLocker: Ensuring Proper Assignment for Code Signing

Solution ID : TL38
Last Modified : 10/02/2024

 

KeyLocker allows only one signer per account; it is essential to ensure that the assigned privileges align with your role as a signer.

This article explains how to verify signer assignment and avoid common errors which occur when the correct user has not been designated as the signer for a code signing certificate.

 

One Signer Per Account:

  • KeyLocker Policy: Each account is limited to a single signer, meaning only one user can be assigned as the designated signer at a time.

  • Common Issue: After you have configured your account, you should confirm whether you have been designated as the signer for the certificate which you intend to use. If you are not the signer, then any attempts to sign your files will be unsuccessful.

 

Privilege Considerations:

  • Privileges Matter: If you are not explicitly assigned the role of signer, any attempts to sign code will result in an error.

 

How to Verify or Assign Signer Privileges:

To avoid this issue, follow these steps to check or assign signer privileges:

  1. Log in to your DigiCert ONE account.
  2. Navigate to the User Roles or Permissions section.
  3. Ensure the correct user is assigned the role of signer.
  4. If the role is incorrect, update the signer role by assigning the necessary privileges.
  5. Confirm the changes, and notify the assigned signer.

 

Error Prevention & Troubleshooting:

  • Proactive Tip: Before attempting to sign, always confirm the signer assignment within your account.

  • Common Error: If you see “User is not the signer,” follow the steps above to assign or verify signer privileges.

 

Conclusion:

To ensure a smooth code signing process, it is essential to assign and verify signer privileges accurately. 

 

For more information on user roles, please refer to the Users documentation.