Signed Executable Shows Unknown Publisher in Windows Defender Firewall
I bought a certificate from Sectigo and have successfully signed my executable using both SHA1 and SHA256 (note I have tried signing all ways, dual, single SHA1, single SHA256, and the results are always the same), however, the publisher name is always unknown in Windows Defender Firewall (tested on multiple PCs). Sectigo support has been less than helpful.
I signed it with this command (also tried using a variety of timestamp servers):
SignTool sign /debug /f AgilisEyesfreeTouchscreenKeyboardsLtd._cert_17267.p12 /as /fd sha256 /tr http://timestamp.comodoca.com/?td=sha256 /td sha256 /p PASSWORD AgilisServer.exe
(SignTool from the Windows 10 SDK)
When downloading the exe, the SmartScreen filter shows the correct publisher.
When running the exe, the Windows Defender Firewall shows UNKNOWN.
Here is the result from /verify (signed with just SHA256):
Verifying: AgilisServer.exe Signature Index: 0 (Primary Signature) Hash of file (sha256): 5EB027097A6C00987EDD1D53E4A4F96E61ACDFA6650A8DB89B49ADBDC4211BDE Signing Certificate Chain: Issued to: AAA Certificate Services Issued by: AAA Certificate Services Expires: Sun Dec 31 15:59:59 2028 SHA1 hash: D1EB23A46D17D68FD92564C2F1F1601764D8E349 Issued to: Sectigo Public Code Signing Root R46 Issued by: AAA Certificate Services Expires: Sun Dec 31 15:59:59 2028 SHA1 hash: 329B78A5C9EBC2043242DE90CE1B7C6B1BA6C692 Issued to: Sectigo Public Code Signing CA R36 Issued by: Sectigo Public Code Signing Root R46 Expires: Fri Mar 21 15:59:59 2036 SHA1 hash: 0BC5E76773D2E44FC9903D4DFEFE451553BBEC4A Issued to: Agilis Eyesfree Touchscreen Keyboards Ltd. Issued by: Sectigo Public Code Signing CA R36 Expires: Thu Nov 09 15:59:59 2023 SHA1 hash: E1763C0A60FE090C4A65A96C8BBDE3B80D871F6F The signature is timestamped: Mon Nov 21 09:33:47 2022
Why does it show the publisher in SmartScreen but not the Windows Defender Firewall screen?