A file that is required cannot be installed because the cabinet file <path> has an invalid digital signature. This may indicate that the cabinet file is corrupt. (226712)

When installing Active Roles, the following error is received

• A file that is required cannot be installed because the cabinet file <path> has an invalid digital signature.  This may indicate that the cabinet file is corrupt.

By default, some Windows Server installations do not recognize DigiCert as a valid certificate authority. In most cases, Windows Server will periodically download an updated certificate authority list from Microsoft.

Servers that do not have a live internet connection will not be able to download the updated certificate authority list, causing an invalid digital signature error.

To verify that this issue is present, check the following in the Active Roles setup file:

1. Right click on the Active Roles Setup.exe file
2. Select Properties
3. Select the Digital Signatures tab
4. Select the signature in the box below and click the Details button
5. In the pane that opens, review the Digital Signature Information, and check for the following:
   • ​​The certificate in the signature cannot be verified

If The certificate in the signature cannot be verified is observed, this indicates that Windows does not recognize DigiCert as an authorized Certificate Authority.

To resolve this issue, download the following certificate files from the DigiCert site:

• https://www.digicert.com/digicert-root-certificates.htm
  • DigiCert Assured ID Code Signing CA-1
  • DigiCert Assured ID Root CA

Once downloaded, install them on the affected server to the Trusted Root Certification Authorities Store. Afterwards, the Active Roles installer should run normally.