Web Analytics

FAQ: Getting Started With Your EV Code Signing Certificate

Now that you’ve received a new YubiKey FIPS token with your EV Code Signing certificate in the mail, you may be wondering just what to do next. This FAQ answers common questions you may have about how to get started with your new certificate and USB token.

Your EV Code Signing certificate is also capable of hardware-free volume signing, team sharing, and CI/CD automation using the eSigner cloud signing platform. To enroll for eSigner with your EV Code Signing certificate visit the enrollment how-to or visit the overview page for more information about the eSigner platform.

SSL.com’s EV Code Signing certificates offer Windows 10 kernel-mode code signing and an instant SmartScreen reputation boost, all for as low as $240.00 per year. They are delivered on secure YubiKey FIPS USB tokens with two-factor authentication.


How do I use my EV Code Signing certificate to sign files?

To sign files with your EV Code Signing certificate, simply plug the token into your computer, follow your software’s steps for signing code, and enter your YubiKey PIN.

• For instructions on using Microsoft SignTool and SSL Manager with your EV Code Signing certificate, please refer to our how-to, Using Your Code Signing Certificate.
• For instructions on using your EV code signing certificate with Java, please refer to our Java Code Signing Guide.

How do I use my EV Code Signing certificate to sign Windows drivers?

Signing kernel-mode and user-mode drivers in Windows 10 requires registration with the Windows Hardware Dev Center program. After you sign your driver with your EV certificate, it must be submitted to the Hardware Dev Center for signing by Microsoft. For complete information, please refer to Microsoft’s documentation:
Kernel-Mode Code Signing Requirements
Get started with the hardware dashboard program
Register for the Hardware Program

Can I install a document signing or S/MIME certificate on my YubiKey?

Yes! The 3.0 release of SSL.com’s SSL Manager lets Windows users securely generate key pairs, order EV Code Signing and Business Identity certificates, and install certificates directly on their YubiKey from the application.

You can also generate key pairs and manage certificates on your YubiKey with Windows, macOS, and Linux computers via Yubico’s YubiKey Manager application. For more information, please read Key Generation and Attestation with Yubikey.

How do I enroll in eSigner with my EV Code Signing Certificate?

EV Code Signing certificate users can also use their certificate for hardware-free volume signing, team sharing, and CI/CD automation using the eSigner cloud signing platform. After ordering your EV Code Signing certificate, you can navigate to the user portal and begin the process there. Get more details on the process in this helpful guide.

Users can sign code with eSigner’s Extended Validation Code Signing capability. Click below for more info.


Thank you for choosing SSL.com! If you have any questions, please contact us by email at Support@SSL.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. You can also find answers to many common support questions in our knowledgebase.

Subscribe to SSL.com’s Newsletter

Don’t miss new articles and updates from SSL.com

Stay Informed and Secure

SSL.com is a global leader in cybersecurity, PKI and digital certificates. Sign up to receive the latest industry news, tips, and product announcements from SSL.com and stay informed of the latest changes about digital identity and encryption that can impact and enhance your life.

We’d love your feedback

Take our survey and let us know your thoughts on your recent purchase.