Artifact Signing
A fully managed end-to-end service for digitally signing code, documents, and applications. (formerly Trusted Signing)
We are aware of this and are actively looking into this.
Azure Trusted Signing: Signed Binaries Still Triggering SmartScreen Warnings
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 84%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBW%3C/text%3E%3C/svg%3E)
Bernhard Weber
5
Reputation points
Hi, we are currently using Azure Trusted Signing to sign our software binaries. The signing process completes successfully, but despite the valid digital signature, our users are still encountering the Microsoft Defender SmartScreen warning when installing the package on new systems. Could you please advise us on how to resolve this? We would like to ensure our software is recognized as trusted by SmartScreen to avoid these warnings for our customers. Is there a specific process to whitelist our binaries or to expedite the reputation build-up for our releases? We are happy to provide specific file hashes or further technical details if needed for your investigation.
Thanks and best regards
Artifact Signing
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 85%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
VEMULA SRISAI 13,135 Reputation points Microsoft External Staff Moderator2026-04-28T10:31:19.86+00:00 Bernhard Weber could you please share the Validation Id in the Private message.
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 57.99999999999999%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
Brian 5 Reputation points2026-04-28T16:12:42.5866667+00:00 Same problem. How do we prevent our customers from seeing the smartscreen warning?
-
VEMULA SRISAI 13,135 Reputation points Microsoft External Staff Moderator
2026-05-14T10:37:19.92+00:00 Bernhard Weber We are working with our partner team to try to address this for Artifact Signing as our highest priority.
This is less of a change with Artifact Signing and more of a broader change in SmartScreen for all code signing noted in the https://learn.microsoft.com/en-us/azure/artifact-signing/faq#what-can-i-expect-when-i-see-smartscre…
-
Bernhard Weber 5 Reputation points
2026-05-18T13:44:27.3333333+00:00 Thanks. To clarify our situation: we observed the same SmartScreen warnings with both a DigiCert OV certificate and Azure Artifact Signing, so this isn't specific to the Artifact Signing service. Based on the FAQ and the linked SmartScreen documentation, I understand the answer is that reputation builds per file hash over time, and there's no expedite or whitelist mechanism. For our specific distribution model (COM Outlook add-in, deployed by customer IT admins with custom MSI parameters, low per-release download volume), we'll rely on Microsoft Security Intelligence submissions per release and on customer-side MOTW handling. If there's a documented path for enterprise ISVs in this distribution pattern that we've missed, I'd appreciate the pointer.
Sign in to comment
1 answer
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 52%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Meha-MSFT 1,720 Reputation points Microsoft Employee Moderator2026-04-28T17:19:09.6233333+00:00