CA Signed Ignition Module - Says it is self signed

Module Development
1

This post is similar to one previous, namely: CA Signed Module Says Self Signed

Here is where I am at:

  1. I followed the steps for signing as outlined here: Signing with HSM

  2. I was able to successfully sign the module:
    image

  3. When I imported the module, it says it is self-signed:

    image
    image675×208 8.5 KB

So my questions are:

  1. Is seeing the certificate show up as self-signed when it is actually from a CA when signing via HSM normal behavior?
  2. If not, is this to be something concerned about?

Please note, I did have to export my certificate from the HSM to my filesystem (as mentioned at Signing with HSM). Not sure if this would cause it to show up as self-signed.

2

If an issuer is not in java's default list of CAs, or you missed an intermediate certificate that is signed by such a CA, your signature will be considered self-signed.

(Ignition doesn't care--I use my own internal CA for my modules.)

1 Like