Approving or rejecting new or updated Code Sign Manager - Self-Hosted Projects

Code Signing Administrators can assign Flows that require approval for new or updated Projects. When such a Flow is assigned, the designated approver must follow the steps in this topic to review and act on the changes.

NOTE For information on approving Project deletions, see Deleting a Code Sign Manager - Self-Hosted Project.

Sign into Code Sign Manager - Self-Hosted at https://[tpp-server]/codesign-protect.
In the Code Sign Manager - Self-Hosted menu bar, click Approvals. The Pending Approvals list opens by default.
Click the timestamp for the Project you want to review. Depending on which type of request you're reviewing, either the Project Update Request or New Project Approval Request model opens.
In the modal, review the summary of the requested Project or Project updates. Complete the Comment field, then click Approve or Reject.
- If approved:
  - For a new Project request, the Project moves from the Draft state to the Enabled state.
  - For changes to an existing Project, the updates are applied.
- If rejected:
  - For a new Project request, the Project remains in the Draft state.
  - For changes to an existing Project, the Project retains its previous configuration.
  - In both cases, the rejection is noted with the comment the approver provided. This comment is visible to other approvers. The Project will not be enabled or updated until the necessary changes are made and the request is resubmitted and approved.

Next Steps for Key Users

After the Project is approved, Key Users should do the following:

Install the code signing client on the signing workstations. See Install Code Sign Clients on signing workstations.
Configure the code signing workstation to use keys protected by Code Sign Manager - Self-Hosted. See Setting up the Code Sign Manager - Self-Hosted clients.