Running Maker Edition 8.1. In developer mode (allowunsignedmodules=true). We have a newly developed OPC Driver module that is signed. it loads correctly and is recognized as signed - no problems. — Then I edit the ignition.conf file and take it OUT of developer mode (allowunsignedmodules=false). Restart the gateway and the module is now in quarantine with reason “This module is unsigned and developer mode is disabled” Just a moment ago it said the module was signed and allowed me to view the certificate. Is there something else I need to do besides signing the module to allow it to run in non-developer mode?
Also, noticed that all the standard modules have a version with suffix (b2024102210) while our module has a version suffix of (b0) Not sure what this means but it is a difference.
Also, you should be able to just uninstall and reinstall the driver and it should install normally.
The quarantine issue will only affect a developer, never an end user.
Thanks for the response. So I just tried the following:
uninstall (delete because it is in quarantine) the driver
re-install our signed driver
It does not warn me that the driver is not signed, it says install successful. However our driver does not appear in the list of loaded modules. I also look at Status > Modules and our driver does not appear
I look at the logs and see the following entries
ModuleManager
04Oct2025 11:21:26
Cannot start up module "com.sulzerconsulting.ignition.opcuadriver", it doesn't exist.
ModuleManager
04Oct2025 11:21:26
Moving module XBOS UA Device to quarantine because module is unsigned and developer. mode not enabled.
Our module works fine if allowunsignedmodules=true. We can load either a signed or unsigned module. We can browse tags. However, we cannot get the module working at all if allowunsignedmodules=false
Note: our certificate is on a hardware dongle, not in a java keystore. I signed the module using jarsigner rather than module-signer.jar because of the keystore issue. I examined the code of module-signer.jar and duplicated all the steps - and the gateway says the module is signed (most of the time) I can look into moving our certificate into a java keystore and using module-signer.jar although I do not look forward to dealing with this again.
If you can upload your module here or to Dropbox or something I can take a look later today to see why it’s not loading or if something is wrong with the signing.
FWIW, there is no requirement that the cert you use to sign your modules is issued by a public CA. It gives you a slightly elevated appearance the one time the module is installed. That’s about it. It can even be self signed.
Hoping to rework module signing into something meaningful for the 2027 major release of Ignition.
I looked at the following page for info on interfacing with a hardware dongle: module-signing
I did not see options for using the dongle but then I looked closer at the source code for module-signer and was able to figure it out. Everything is working now.
The options that allow module-signer to interface with a hardware dongle should be added to the online documentation. More and more people are forced to use hardware dongles to store their certificates. Thanks!