azure azure-devops ssl-certificate certificate code-signing

What is the most streamlined way to implement code signing in Azure DevOps build pipelines in 2024?

Are .pfx files valid for code signing in 2024? It appears we can no longer use a code signing certificate (that we just purchased from DigiCert) as a .pfx file since we cannot gain access to the private key.

We have several products with corresponding build pipelines that currently rely on an uploaded .pfx file with a password.

What's the easiest way to update our processes to conform to new standards? Does Azure/ADO have built-in solutions to streamline this?

DigiCert article on this topic.

Solution

We were able to connect our build pipelines in ADO to DigiCert Key Locker. In our case this was the most straightforward approach.

Article about private keys / .pfx files no longer being directly accessible.

Connect Azure Devops to Key Locker

How can I define compile time constants in bicep configuration language?
Outlook calendar don't render with FullCalendar
Azure functions decoding error for IotHub device connection state message schema
How do I set scope in Azure API Manager (APIM) when using D_application_id
How to mount multiple disks in a loop using ansible
How can I get sub value in nested json via KQL?
Azure .NET SDK: Scale Azure SQL databases through SDK
How can I invoke Azure Trusted Signing from a Linux OS?
How to transfer "Set Variable" activity output into Json file using "Copy Data" activity or any other options?
Verify Microsoft Access token on my ASP.NET Core Web API
I'm trying to install the package from a private Azure DevOps repository using the pip install command, but I'm encountering an error
Unable to define the sites for an App Registration for SahrePoint with Site.Selected
Check if the resource exists before using data
Not able to see azure 'LifecyclePolicyCompleted event' log
Direct Web Push gives Error when used from Notification Hub
Azure Remove User Consent to API
Flutter-Azure Deviops pipelineThe discrepancy between the number of tests reported as passed or failed in the pipeline output and the test report
App_location on deployment of a static webapp
MSINotEnabled - Can't use KeyVault Reference in Azure Function
Reading values from a key value based file and passing these values to azure devops template
Deleting an Azure Loadbalancer Frontend IP configuration from python?
How to retrieve the front door id from a Microsoft CDN (classic)
What is HEAD operation in CosmosDB reported in Azure Monitoring
Deploying a Python App to Azure App Service with Github Actions
How to Query User Access Logs for Azure Front Door
How can I add email recipients to a Graph API request programmatically?
How to create Azure Devops Service Connection Docker Registry Type Other
Problem with CORS policy in React front end with FastAPI on the back trying to use Microsoft Single Sign-on
Azure Document Intelligence Custom Classification Python API
Azure Function App unaccounted for time in Application Insights Timeline