tag:help.appveyor.com,2012-11-13:/discussions/problems/26836-signing-the-msi-using-signtool-and-pfxAppVeyor: Discussion 2020-06-10T21:02:56Ztag:help.appveyor.com,2012-11-13:Comment/482339812020-04-10T17:21:48Z2020-04-10T17:21:48ZSigning the MSI using Signtool and pfx<div><p>Hi Amit,</p>
<p>One option is to try base64-encode .pfx and put it into secure <a href="https://www.appveyor.com/docs/build-configuration/#secure-variables">environment variable</a>, then decode during the build. Of course, you should be worried about the size of environment variable(s).</p>
<p>Another option is to put encrypted .pfx into repository using <a href="https://www.appveyor.com/docs/how-to/secure-files/">secure file tool</a>. Then both .pfx encryption password/salt and .pfx password itself are being put into secure variables.</p>
<p>We've tried both ways to sign AppVeyor installers and they worked pretty well for us, though second way is more preferable.</p></div>Feodor Fitsner