Add a certificate to the Aurora Protect Desktop global safe list

For custom software that is properly signed, add the certificate to the certificates list to allow the software to run without interruption. This allows administrators to create a safe list by signed certificate which is represented by the SHA1 thumbprint of the certificate. When adding certificate information to the management console, the certificate itself is not uploaded or saved to the management console; the certificate information is extracted and saved to the management console (timestamp, subject, issuer, and thumbprint). The certificate timestamp represents when the certificate was created. The management console does not check if the certificate is current or expired. If the certificate changes (for example, renewed or new), it should be added to the safe list in the management console. The safe list by certificate feature works with PowerShell, ActiveScript, and Office macros.

This feature currently works with Windows and macOS only.

Identify the certificate thumbprint for the signed Portable Executable (PE).
  1. In the management console, on the menu bar, click Settings > Certificates.
  2. Click Add Certificate.
  3. Click either Browse for certificates to add or drag-and-drop the certificate to the message box. If browsing for the certificates, the Open window displays to allow selection of the certificates.
  4. Optionally, you can select the file type the certificate Applies to, Executable, or Script. This allows you to add an executable or script by a certificate instead of a folder location.
  5. Optionally, add notes about the certificate.
  6. Click Submit. The Issuer, Subject, Thumbprint, and Notes (if entered) are added to the repository.
When a certificate has expired or been revoked, you must remove the certificate and add a newly issued certificate. To remove a certificate, select the certificate and click Remove From List, then click Yes to confirm. To add a valid certificate again, follow the steps above.