--- title: Validating a signed file description: The server provides a tool, validate-file-signature, that checks if a file has not been tampered with in any way. component: pingauthorize version: 10.1 page_id: pingauthorize:pingauthorize_server_administration_guide:paz_validating_signed_file canonical_url: https://docs.pingidentity.com/pingauthorize/10.1/pingauthorize_server_administration_guide/paz_validating_signed_file.html revdate: August 2, 2023 section_ids: steps: Steps example: Example: result: Result: --- # Validating a signed file The server provides a tool, `validate-file-signature`, that checks if a file has not been tampered with in any way. ## Steps * Run the `validate-file-signature` tool to check if a signed file has been tampered with. ### Example: For this example, assume that the `sign-log` property was enabled for the File-Based Audit Log Publisher. ```shell $ bin/validate-file-signature --file logs/audit ``` ### Result: ``` All signature information in file 'logs/audit' is valid ``` | | | | - | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | | If any validations errors occur, you will see a message similar to the one as follows.``` One or more signature validation errors were encountered while validating the contents of file 'logs/audit': * The end of the input stream was encountered without encountering the end of an active signature block. The contents of this signed block cannot be trusted because the signature cannot be verified ``` |