In the InfoPath 2003 Service Pack 1 Preview you can create a fully trusted form template by signing the XSN with a code signing certificate. Here’s what you do:
At this point, you need to choose a certificate that can be used for code signing.
If you do not have a certificate, you can choose the Create Certificate button. This will create a test certificate – not a certificate that has been authenticated by a certificate authority.
While you are developing your form template, you will not be able to preview with full trust permissions unless you register the form template.
The first time your users fill out the form that you have signed with a certain certificate, they will see a Security Warning dialog that notifies them that the form template is digitally signed and asks if they trust the publisher. Once they have checked the box to trust the publisher, they will be able to open any form template that asks for full trust and is signed with that same certificate.
You can view the list of trusted publishers in the SP1 version of InfoPath by selecting Tools | Options and clicking on the Trusted Publishers button.
If users find that the option to trust the publisher is disabled, that means that the root of the certificate used is not trusted on the user’s machine.
When you received your code-signing certificate, you asked the CA (Certificate Authority) for it. What the CA delivered to you is a certificate that is now in your personal folder that is trusted by you and by anybody who trusts the CA that issued it. So, for example, if you get a code signing certificate from Verisign, any user will have the option to trust you as a publisher as long as they also have Verisign in the list of Trusted Root Certification Authorities on their machine. Once a user has trusted the root of a certificate, the option to trust the publisher will be enabled in the Security Warning dialog that is displayed when they fill out a fully-trusted, signed form.
Users can trust the root of a certificate through the Security Warning dialog that comes up when they open a form template. When the Security Warning dialog is open:
Is there any way to deploy the InfoPath forms on the client, without requiring a server.
What i am doing is creating a Infopath form and adding that into a word's Document Information Panel but word has a following restriction:
"The Document Information Panel template cannot be opened because it was published to the local computer or an Internet or untrusted site. Install or publish the template to a local intranet or trusted site and then try again."
do you have any idea about this?
Manoj I have the same issue. Did you manage to resolve it?
PingBack from http://panvega.wordpress.com/2009/03/03/how-to-apply-digital-signature-in-infopath-for-webbrowser-ie-signing/
PingBack from http://cellulitecreamsite.info/story.php?id=9992
Did is not the case for Infopth 2010. How I Digitally Signed Fully Trusted Form Templates in Microsoft InfoPath 2010.
InfoPath 2010 still allows you to sign your form template. You can do this form the File/Form Options dialog's Security tab. Set the permissions to Full Trust, and select the signing certificate.
Note that the dialog gives you an option to generate a certificate. This certificate is both short-term (one month expiration) and also self-signed (meaning a consumer has to install your cert in their trusted store), and should therefore only be used for testing purposes. Real signagtures should be sent to your appropriate cab-signing service.
Thats all very well, but when the certificate expires, submitted forms are no longer viewable until the underlying template is republished with a valid certificate.
Thanks for posting this detail. It helped me a lot and saved my lot of time and efforts. I have been working on this module from past many days and was facing some issues but now I think I can resolve them.
<a href="www.arx.com/.../Digital-Signatures-InfoPath">infopath signing</a>