tags:

views:

41

answers:

3
Q: 

Signing assemblies with pfx files in MSBuild/Team Build/TFS

Hi,

I Get this error when trying to build a project using Team Build (MSBuild) on TFS 2010

C:\Windows\Microsoft.NET\Framework\v4.0.30319\Microsoft.Common.targets (1970):
Cannot import the following key file: CCC.pfx.
The key file may be password protected.

To correct this, try to import the certificate again or manually install the certificate to the Strong Name CSP with the following key container name: VS_KEY_C00C673BBB353901

C:\Windows\Microsoft.NET\Framework\v4.0.30319\Microsoft.Common.targets (1970):
Importing key file "CCC.pfx" was canceled.

It all builds OK in VS 2010. The assembly is signed with a pfx file, usually in Visual Studio we are prompted for the password the first time we build but then never again...

I've tried running sn -i companyname.pfx VS_KEY_3E185446540E7F7A as other replies as suggested here http://stackoverflow.com/questions/2815366/cannot-import-the-following-keyfile-blah-pfx-the-keyfile-may-be-password-prote

I've tried importing into the personal certicificate store as suggested here http://stackoverflow.com/questions/885484/using-msbuild-to-sign-clickonce-or-assembly-error-msb3321

But all to no avail, still the same error.

Is someone out there is using Team Build to build an assembly that is signed?

How do I do it?

Do I have to somehow add the certificate to the windows account the build service runs under or something like that?

Alternatively how do I make the build done in TeamBuild not use signing? I just want to check it compiles and run the unit tests I don't need signing for that.

Thanks, Mike G

A: 

You need to adapt this answer to your specific. Something like:

sn -i companyname.pfx VS_KEY_C00C673BBB353901
heavyd  2010-10-26 23:33:02
As you can see from my original post I've already tried this with no success
MikeG  2010-10-28 07:37:02
A: 

What I did is not that elegant, but works: log in as the user that runs msbuild on the build machine, manually invoke msbuild, and then type in the password when prompted. It'll now be saved in that user's certificate store, and now the builds can run unattended.

gregmac  2010-10-27 04:59:55
A: 

What finally fixed it for me was making the account under which TFS Build service runs an administrator on the local machine.

Don't know though if any of the other stuff I was trying before also needs to be done to get it working. But before it was admin it didn't work after it became admin it worked.

MikeG  2010-10-28 13:57:50

related questions

Executing different set of MSBuild tasks for each user?
MSBuild ItemGroup, excluding .svn directories and files within
Best build process solution to manage build versions
Is it possible to build MSBuild files (visual studio sln) from the command line in Mono?
How do I publish a Asp.net web application using MSBuild?
Is it worth learning to use MSBuild?
Is there a way to perform a "Refresh Dependencies" in a setup project outside VS2008?
ASP.NET Merge: Virtual path 'obal.asax' is not allowed
Why won't my 2008 Team Build trigger on developer check-ins despite CI being enabled
VS.Net 2005 required on Build box with .Net 2.0 C++ Projects?
How to upgrade TFS 2005 to TFS 2008?
Whats the best way to deliver TFS build status notifications to the team?
Automate test of web service communication
Out-of-place builds with C#
TFS Lifecycle Management for Build Environment
How do I automate repetitive tasks post-build?
How can you publish a ClickOnce application through CruiseControl.NET?
How can I create virtual machines as part of a build process using MSBuild and MS Virtual Server and/or Hyper-V Server Virtualization?
Should I switch from nant to msbuild?
sgen.exe fails
Automated release script and Visual Studio Setup projects
Using MSTest with CruseControl.NET
Is nAnt still supported and suitable for .net 3.5/VS2008?
Use SVN Revision to label build in CCNET
CruiseControl.net, msbuild, /p:OutputPath and CCNetArtifactDirectory