Requesting Signing Access
When a user or machine identity needs to sign artifacts, they must first request signing access through the signing workflow. Head to your Certificate Management Project > Code Signing > Approvals > Signing Requests and press Request Signing Access.
Selecting a signer and configuring parameters
Select the signer you want to use. The form will automatically load the constraints associated with that signer’s policy.Depending on the policy constraints, provide the required parameters:
- Valid From / Valid Until: If the policy defines a max window duration, specify the time range for when you need signing access.
- Allowed Sign Operations: If the policy defines a max signings count, specify how many signing operations you need.
-
Justification: Optionally provide a reason for the request (e.g., “Release v2.4.0 signing”).
Viewing Requests
Head to Code Signing > Approvals > Signing Requests to view all signing requests. You can filter requests by status:- Open: Requests currently pending approval
- Approved: Requests that have been approved and grants issued
- Rejected: Requests that were rejected by an approver
- Cancelled: Requests cancelled by the requester
- Expired: Requests that exceeded their maximum TTL
Approving a Request
Reviewing the request details
Review the signing access request information including:
- Requester name
- Signer name and certificate
- Grant parameters (valid from/until, allowed sign operations, etc.)
- Justification
Rejecting a Request
When a request is rejected, no signing grant is issued.