How to verify the signatures and integrity of signed MID Server JAR files


Description

This article explains how to verify the signature of MID Server jar packages

Release or Environment

From Paris

Instructions

1. Download the jarsigner.exe. jarsigner is available from the JDK (link below). For convenience, the executable is attached to this article.

https://www.oracle.com/java/technologies/javase/javase8u211-later-archive-downloads.html

2. Place jarsigner.exe into a folder of your convenience, eg. \agent\jre\bin

3. The syntax of the jarsigner.exe is as follows:

C:\MidServer\agent\jre\bin>jarsigner -verify -verbose -certs -strict "c:\mid.orlando-12-11-2019__patch4-05-20-2020_06-01-2020_0932.windows.x86-64.zip"

4. The output will show signature verification of each jar file, the last line should be: "jar verified." - Sample output attached (jarsigned.txt)

Additional Information

https://docs.oracle.com/javase/7/docs/technotes/tools/windows/jarsigner.html