Digital signature of the kernel drivers on Windows
2017-11-28 13:59

It is required in Windows OS that kernel drivers are digitally signed in order to be loaded.

Windows package 3.2.2 (driver 2.11.5) and newer version 3GD Windows drivers are signed with a SHA256 certificate. You can check the SHA256 digital signature from the driver properties as below.

If Windows OS does not recognize the kernel driver certificate, it is most likely because the corresponding root certificate is not installed on the server. You can check whether the necessary certificate is present by running "certmgr".  The certificate “DigiCert High Assurance EV Root CA” must be present in the folder "Trusted Root Certification AuthoritiesCertificates” as shown in the image below.

Note: Depending on Windows version, the corresponding root certificatecertificate can be placed in another folder.  

If the corresponding root certificate does not exist, the only way to install the root certificate is to update Windows via the "Windows Update" function.

Leave a comment