What I'm trying to accomplish here is to have the .appx file signed during build time so that the following command would work or even better I should not need it anymore
set path=%path%;"C:\Program Files (x86)\Windows Kits\8.1\bin\x64"
SignTool.exe sign /a /f certificate.pfx /fd SHA256 /v /p MySecretPassword TestApp.appx
I opened package.windows.appmanifest file (located in TestApp_root\TestApp\bld\Release\platforms\windows directory) in the editor view, chose Packaging tab and clicked Choose certificate... From there I chose Select from File... from the Configure Certificate
drop down menu and selected the .pfx we purchased from Symantec few weeks ago. After that I typed in password and password confirmation as requested.
I ended up getting an error message "The Manifest Designer could not import the certificate", The certificate you selected is not valid for signing because it's either expired or has another issue.
I checked that the certificate is listed in certmgr.msc Trusted Root Certificate Authorities > Certificates view and it's issued to our Company name.
In the Manifest Designer Publisher display name matches our Company name, but Publisher is set to CN=$username$
I tried to change that to CN=Company Name, OU=Company Name that was mentioned in the certificate, but still no luck.
Certificate also matches the listed requirements: http://stackoverflow.com/questions/22288410/choosing-a-certificate-for-a-windows-store-application-via-the-package-appxmanif
How to proceed from here?
