itman 1,674 Posted October 4, 2023 Share Posted October 4, 2023 (edited) -EDIT- Posting removed. It also would only work for LTSB OS versions only. Microsoft has removed from the Windows Catalog all KB's for EOL OS's with ACS support other than those for LTSB versions. Edited October 5, 2023 by itman Link to comment Share on other sites More sharing options...
itman 1,674 Posted October 8, 2023 Author Share Posted October 8, 2023 (edited) Further analysis yields there is a way to provide to provide ACS support for Win 10 1903+ versions. Microsoft has removed all ACS support KB's for Win 10 versions prior to 1903 from the Win Catalog other than LTSB versions. If you refer to Micosoft's article on ACS support: https://support.microsoft.com/en-au/topic/kb5022661-windows-support-for-the-azure-code-signing-program-4b505a31-fa1e-4ea6-85dd-6630229e8ef4 , you will note there is no KB listed for Win 10 1903. Likewise if you try to install the KB listed for Win 10 1909, that won't work either because it is for LTSB version only. However if you access KB5005611 which is the ACS support KB listed for Win 10 2004, 20H2, and 21H1, it states the update applies to all Win 10 versions 1903 and later; Select the version 21H1 update applicable to your OS version. For additional reference you can refer to the Sophos ACS article: https://support.sophos.com/support/s/article/KB-000045019?language=en_US Finally and important, you need to verify that this certificate,Microsoft Identity Verification Root Certificate Authority 2020, exists in your Win root CA store using certmgr.exe. If it does not, you will need to download and install the certificate manually. Refer to the above linked Microsoft ACS article on how to do that. Edited October 8, 2023 by itman LesRMed 1 Link to comment Share on other sites More sharing options...
Recommended Posts