Free Trial
Contact Us

Knowledge Base

Knowledge BaseCode Signing

How to Enroll a Code Signing Certificate in SCM? 

Updated on December 19, 2025

 Overview 

 

Code Signing Certificates are used to digitally sign software, ensuring authenticity and integrity. In SCM, enrollment involves creating a certificate profile, setting up an enrollment form, and submitting a Certificate Signing Request (CSR). 

Prerequisites 

  • Access to Sectigo Certificate Manager (SCM) with administrator privileges. 

  • A configured Code Signing Certificate Profile. 

  • CSR generated in PEM format. 

  • If required, Key Attestation enabled by Sectigo Support. 

Step 1: Create a Certificate Profile 

  1. Log in to SCM as an administrator (MRAO role). 

  1. Navigate to Enrollment > Certificate Profiles. 

  1. Click Add to create a new profile. 

  1. Complete the fields: Name, CA Backend, Certificate Type (Code Signing Certificate), Template (OV or EV), Terms (validity period). 

  1. Click Save. 

Step 2: Delegate Profile to Organization 

  1. Navigate to Organization > Certificate Settings. 

  1. Enable Code Signing Certificates. 

  1. Assign the newly created profile to your organization. 

Step 3: Create an Enrollment Form 

  1. Navigate to Enrollment > Enrollment Forms. 

  1. Click Add (+) to create a new form. 

  1. Configure: Type (Code Signing Certificate Enrollment Form), Generate URL Extension, Authentication (Email Confirmation or Secret ID). 

  1. Click Save. 

  1. Add the form to an account: Select the form → Accounts → Add (+), provide account details, assign certificate profiles. 

Step 4: Send Enrollment Invitation 

  1. Navigate to Certificates > Code Signing Certificates. 

  1. Click Invitations → Add (+). 

  1. Enter: Email of the recipient, Enrollment Endpoint (the form created earlier), Account associated with the endpoint. 

  1. Click Send. 

Step 5: Complete Enrollment 

  1. The recipient opens the email and clicks the enrollment link. 

  1. Fill in: Certificate Email (SAN), First Name / Last Name, Certificate Term. 

  1. Upload: CSR in PEM format, Key Attestation file (if required). 

  1. Submit the form. 

Best Practices 

  • Ensure CSR matches the certificate profile requirements. 

  • Use strong authentication for enrollment forms. 

  • For EV Code Signing, verify organization details before submission. 

References 

 

Related Articles:

Tags:

Need help?

Need help making a purchase? Contact us today to get your certificate issued right away.

Live chat

Click the button below or click "Chat with an Expert" to start chatting with us now!

Start Chat

Call us today

United States
+1 888 266 6361
France
+33 3 66 72 95 95
Italy
+39 02 4792 1708
Spain
+34 900 838 451
Germany
+49 800 1002328
International
+1 914 732 844

Resources