Verify Windows Packages

On this page

Before you Begin

Steps
Verify Packages with PowerShell
Verify Packages by Checking Properties

The MongoDB release team digitally signs MongoDB Compass packages to certify that packages are a valid and unaltered MongoDB release. Before you install MongoDB Compass, you can use the digital signature to validate the package.

This page describes how to verify Windows .exe and .msi packages.

Before you Begin

If you don't have MongoDB Compass installed, download the MongoDB Compass binary from the Download Center.

Steps

To verify the MongoDB Compass package on Windows, you can use one of these methods:

Verify Packages with PowerShell
Verify Packages by Checking Properties

Verify Packages with PowerShell

To verify Windows packages with PowerShell, run:

powershell Get-AuthenticodeSignature -FilePath <path_to_compass_exe_or_msi>

If the file is signed, the command returns:

SignerCertificate     Status     Path
-----------------     ------     ----
F2D7C28591847B...     Valid      <path_to_compass_exe_or_msi>

Verify Packages by Checking Properties

Open the properties for your MongoDB Compass package

Check the package's digital signatures

In the properties window, open the Digital Signatures tab.

If the package is properly signed, the Digital Signatures show these properties:

Name of signer	Digest algorithm	Timestamp
MONGODB, INC.	sha256	<Timestamp>

Back

Verify RPM Packages

Edition Capabilities