Using only signed modules provides some assurance that the code came from a trusted source, reduces the risk of installing
malicious code, and complies with module signing requirements. For example, starting in
Niagara 4.8 if you attempt to install an unsigned module it will cause a signature verification warning.
Prerequisites:
- You are running
Niagara 4.8 or later version of
Workbench.
- You have already created a code signing certificate. For details, see Niagara Station Security Guide).
- In
Workbench, click to open the Jar Signer window.
- Beside the field labeled
Select a jar to sign, click the folder icon to the right.
- In the file chooser window navigate to the unsigned jar file and click to select it, and click OK.
- In the Alias field, click and select your code signing certificate.
- Enter the Certificate Password.
- Enter a TSA URL (or use the default URL) and click OK.
The
Save signed jar as window opens prompting you to select a destination location for the signed jar.
NOTE: You can save the file anywhere, but if you intend to use it in the current installation, it has to eventually go into the
!modules folder.
- Navigate to the desired location and click Save.
The signed jar is saved to the specified location. A confirmation window indicates signing is complete.