Hello,
Is there any way that SB could use the thumbprint of the certificate rather than the PFX and password?
Signtool works perfectly using the /SHA1 tag and the certificate thumbprint. Everything else is the same. I always thought that it shells out or calls signtool to codesign itself.
Right now I have it working by turning off the Add a Digital Signature, Installer Integrity Check and Verify Code-Signed At Startup.
FYI - I have the same problem in anything that auto-codesigns during/after a compile.
Is there another work around for this?

Thanks