To sign a PKI Services ActiveX program, you must sign the unsigned version that PKI Services provides, rebuild the install program for it, and sign the rebuilt install program. To make the signed programs available to PKI Services users, you must put the signed files in directories that are accessible to PKI Services users, and update the HTTP Server configuration files to specify those directories.