You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/trusted-signing/how-to-cert-revocation.md
+4-5Lines changed: 4 additions & 5 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,15 +1,14 @@
1
1
---
2
2
title: Revoke a certificate profile in Trusted Signing
3
-
description: how-to revoke a Trusted Signing certificate from Azure portal.
3
+
description: How-to revoke a Trusted Signing certificate from Azure portal.
4
4
author: mehasharma
5
5
ms.author: mesharm
6
-
ms.service: azure-code-signing
6
+
ms.service: trusted-signing
7
7
ms.topic: how-to
8
-
ms.date: 03/31/2024
8
+
ms.date: 04/12/2024
9
9
---
10
10
11
11
12
-
13
12
# Revoke a certificate profile in Trusted Signing
14
13
15
14
Certificate revocation is an act of invalidating a certificate. Once a certificate is successfully revoked, all the files signed with a revoked certificate become invalid from the selected revocation date and time.
@@ -58,4 +57,4 @@ Complete these steps to revoke a certificate profile from Trusted Signing:
58
57
11. Once the certificate is successfully revoked:
59
58
- The status is updated for the thumbprint that was revoked.
60
59
- An email is sent to the email addresses provided during Identity Validation.
Copy file name to clipboardExpand all lines: articles/trusted-signing/how-to-sign-history.md
+40-20Lines changed: 40 additions & 20 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -3,34 +3,54 @@ title: Access signed transactions in Trusted Signing
3
3
description: How-to access signed transactions in Trusted Signing in Azure portal.
4
4
author: mehasharma
5
5
ms.author: mesharm
6
-
ms.service: azure-code-signing
6
+
ms.service: trusted-signing
7
7
ms.topic: how-to
8
-
ms.date: 04/01/2024
8
+
ms.date: 04/12/2024
9
9
---
10
10
11
11
# Access signed transactions in Trusted Signing
12
12
13
-
Review the details of the signing requests executed by Trusted Signing in Azure portal.
14
-
Currently there are four different options enabled:
15
-
- Log Analytics workspace
16
-
- Storage Account
17
-
- Event Hub
18
-
- Partner Solution
13
+
Azure Monitor’s Diagnostic Settings enable you to route platform metrics, resource logs, and the activity log to various destinations. For each Azure resource, you need to configure its own diagnostic setting. Similarly, each Trust Signing account should have its own settings established.
14
+
Currently there are four different options enabled:
15
+
16
+
-**Log Analytics workspace**: A Log Analytics workspace serves as a distinct environment for log data. Each workspace has its own data repository and configuration. It’s the designated destination for sending your data. If you haven’t already set up a workspace, create one before proceeding. For additional details, refer to the [Log Analytics workspace Overview.](https://learn.microsoft.com/azure/azure-monitor/logs/log-analytics-workspace-overview)
17
+
-**Storage Account**: An Azure storage account houses all your Azure Storage data objects, including blobs, files, queues, and tables. It offers a unique namespace for your Azure Storage data, accessible globally via HTTP or HTTPS. When setting up your storage account, follow these steps:
18
+
- Select your Subscription: Choose the appropriate subscription.
19
+
- Choose a Storage Account: Specify the storage account where you want to store your data.
20
+
- Azure Storage Lifecycle Policy: Utilize the Azure Storage Lifecycle Policy to manage how long your logs are retained.
21
+
For additional information, refer to the [Storage account Overview](https://learn.microsoft.com/azure/storage/common/storage-account-overview?toc=/azure/storage/blobs/toc.json&bc=/azure/storage/blobs/breadcrumb/toc.json)
22
+
-**Event Hub**: Azure Event Hubs is a cloud-native data streaming service that can handle millions of events per second with low latency. It seamlessly streams data from any source to any destination. When configuring it, you can specify the subscription to which the event hub belongs. For additional information, refer to the [Event Hubs Overview](https://learn.microsoft.com/azure/event-hubs/event-hubs-about)
23
+
-**Partner Solution**: You can send platform metrics and logs to certain Azure Monitor partners.
24
+
25
+
Remember, each setting can have no more than one of each of the destination types. If you need to delete a resource, rename, or move a resource, or migrate it across resource groups or subscriptions, first delete its diagnostic settings.
26
+
27
+
For more detailed information, you can refer to the official Microsoft documentation on [Diagnostic settings in Azure Monitor](https://learn.microsoft.com/azure/azure-monitor/essentials/diagnostic-settings) and [Creating diagnostic settings in Azure Monitor.](https://learn.microsoft.com/azure/azure-monitor/essentials/create-diagnostic-settings)
19
28
20
29
Following is an example of how to view signing transactions through storage account.
30
+
21
31
## Prerequisites:
32
+
22
33
- Ability to create storage accounts in a subscription. (Note: The billing of storage accounts is separate from Trusted Signing resources.)
23
34
- Sign in to the Azure portal.
24
35
25
-
## Send signed transactions to storage account
26
-
Follow the steps to access and send sign transactions to your storage account:
27
-
1. Follow this guide to create Storage Accounts, Create a storage account - Azure Storage | Microsoft Learn, in the same region as your trusted signing account (Basic storage account is sufficient)
28
-
2. Navigate to your trusted signing account in the Azure portal.
29
-
3. On the trusted signing account overview page, locate **Diagnostics Settings** under Monitoring section.
30
-
1. Select Diagnostics Settings on the left-side blade and click **+ Add diagnostic setting** link on the left side.
31
-
2. From **Diagnostics setting** page, select **Sign Transactions** category and choose ‘Archive to a storage account’ option and select the subscription and Storage account that you newly created or already have.
32
-
4. After selecting subscription & storage account, click **Save**. This action brings you to previous page where it displays list of all diagnostics settings created for this code sign account.
33
-
5. After creating a diagnostic setting, wait for 10-15 mins before the events begin to get ingested to the newly created storage account.
34
-
6. Navigate to the storage account created in step 1. In this example, we will use storage account **storagetestneu1**.
35
-
7. From storage account resource, navigate to **Containers** under **Data storage**.
36
-
8. From the list, select container named **insights-logs-signtransactions** and navigate to the date and time you're looking to download the log.
36
+
## Send signing transactions to storage account
37
+
38
+
Follow the steps to access and send signing transactions to your storage account:
39
+
40
+
1. Follow this guide to create Storage accounts, [Create a storage account - Azure Storage | Microsoft Learn](https://learn.microsoft.com/azure/storage/common/storage-account-create?toc=/azure/storage/blobs/toc.json&bc=/azure/storage/blobs/breadcrumb/toc.json), in the same region as your trusted signing account (Basic storage account is sufficient).
41
+
2. Navigate to your trusted signing account in the Azure portal.
42
+
3. On the trusted signing account overview page, locate **Diagnostics Settings** under Monitoring section.
43
+
44
+
:::image type="content" source="media/trusted-signing-diagnostic-settings.png" alt-text="Screenshot of trusted-signing-diagnostic-settings." lightbox="media/trusted-signing-diagnostic-settings.png":::
45
+
46
+
4. Select Diagnostics Settings on the left-side blade and click **+ Add diagnostic setting** link on the left side.
47
+
5. From **Diagnostics setting** page, select **Sign Transactions** category and choose ‘Archive to a storage account’ option and select the subscription and Storage account that you newly created or already have.
48
+
49
+
:::image type="content" source="media/trusted-signing-select-storage-account-subscription.png" alt-text="Screenshot of trusted-signing-select-storage-account-subscription." lightbox="media/trusted-signing-select-storage-account-subscription.png":::
50
+
51
+
52
+
6. After selecting subscription & storage account, click **Save**. This action brings you to previous page where it displays list of all diagnostics settings created for this code sign account.
53
+
7. After creating a diagnostic setting, wait for 10-15 mins before the events begin to get ingested to the newly created storage account.
54
+
Navigate to the storage account created previously.
55
+
8. From storage account resource, navigate to **Containers** under **Data storage**.
56
+
9. From the list, select container named **insights-logs-signtransactions** and navigate to the date and time you're looking to download the log.
0 commit comments