Having renewed an EV code signing certificate, the new certificate no longer works for Windows 7 kernel driver signing. The new certificate has been accepted for Windows 10 attestation signing. The old certificate, from the same supplier, worked for both Windows 7 and the Windows 10 attestation signing portal.
The only relevant change appears to be in the distinguished name, which lacks a stateOrProvinceName attribute in the new certificate, as well as the less important postalCode and street attributes. The old, working certificate contained the name of the UK county in the stateOrProvinceName attibute.
Is the distinguished name stateOrProvinceName (ST/SP/S) attribute required for Windows 7 kernel driver signing?
It looks like you're new here. If you want to get involved, click one of these buttons!
|Upcoming OSR Seminars|
|Writing WDF Drivers||21 Oct 2019||OSR Seminar Space & ONLINE|
|Internals & Software Drivers||18 Nov 2019||Dulles, VA|
|Kernel Debugging||30 Mar 2020||OSR Seminar Space|
|Developing Minifilters||27 Apr 2020||OSR Seminar Space & ONLINE|