# Microsoft Azure Trusted Signing ## Create Your Microsoft Partner Account To build an app that you can publish to the Microsoft App Store, Deskifier needs some specific details from your Microsoft Partner Center dashboard. 1. Navigate to and click Get started with Azure
2. After signing up or logging in, navigate to the Artifact Signing Accounts service in the Azure portal
3. Click Create, and enter a resource group name. This can be anything (recommended "appName" + "Resource")
4. Select an account name & pricing plan (recommended "appName" + "Account"). Take note of the Account name, as you'll need to enter it in the Deskifier dashboard (Azure Signing Account Name)
5. Next, you should be on the signing account you just created. Here we'll navigate to Access control (IAM) to set our account permissions.
6. Search for "Artifact Signing Identity Verifier", and click it to select it.
7. Next, select your user account as under "Members"
8. Once you've selected the role, and your account, click "Review + assign" at the bottom of the screen. Next, go to "Overview" and click "Identity validation"
9. Click New identity -> Public
10. Enter all details as needed.
11. After completing the identity request, your Identity will be pending verification. In the meantime we can move onto the next step. Search for "Microsoft Entra ID"
12. Press Add -> App registration
13. Enter any name for your application
14. Here we need to take note of these two values, we'll need to enter them into the Deskifier dashboard later on (Application Tenant ID & Application Client ID)
15. Next head to "Certificates & secrets" and click "New client secret", enter a description for your new client secret, and click Add.
16. Take note of the Client secret value, we'll need to enter it into the Deskifier dashboard (Application Client Secret)
17. Once you've created your application, head back to the Artifact Signing service, and back into Access control (IAM), and click "Add" again.
18. This time we'll search "Artifact Signing Certificate Profile Signer" and select it.
19. We'll go to Select members, and search our newly created application, and select it. Press review + assign to assign the role to our new application.
20. Next, head back to Overview and click Certificate profile. Take note of the account URI, as you'll need to enter it in the Deskifier dashboard (Azure Signing Endpoint) {% hint style="warning" %} This next section assumes that your Identity validation from step 10 is complete. {% endhint %}
21. Click Create -> Public Trust
22. Enter a Certificate Profile Name, and select your identity for the new certificate profile. \ \ Take note of your Certificate Profile Name & Common Name, as you'll need to enter it in the Deskifier dashboard (Azure Certificate Profile Name & Azure Certificate Profile Name)
If you've done all of these steps, you should now have all of the needed information to input in the Deskifier dashboard.
Application Tenant ID & Application Client ID: **Step 14**\ Application Client Secret: **Step 16**\ Azure Signing Account Name: **Step 4**\ Azure Certificate Profile Name & Azure Signing Publisher Name: **Step 22**\ Azure Signing Endpoint: **Step 20** --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://deskifier.gitbook.io/deskifier/publishing-and-code-signing/microsoft-azure-trusted-signing.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.