Reputation: 855
productsign mac .pkg installer
I need to sign a MacOS installer with .pkg extension. I have a .pfx certificate and added it to Keychain. It contains both certificate and the private key.
But when I try to sign this .pkg using productsign utility, it shows an error as :
productsign --sign "commonName" unsigned.pkg signed.pkg
productsign: error: Could not find appropriate signing identity for “commonName”. An installer signing identity (not an application signing identity) is required for signing flat-style products.
Upvotes: 5
Views: 6580
Answers (2)
Reputation: 387
These steps work for us:
Unlock the keychain:
security unlock-keychain -p {keychain_password} /Users/{your_user}/Library/Keychains/login.keychain-dbList the available signing identities:
Note: Code signing identities cannot be used to sign a pkg in mac. You can find these by adding
-p codesigningto the below command.security find-identity -vSign an installer using productsign:
Note: The identity can typically be the long hex code from the above command:
productsign --sign "{your_identity}" original.pkg signed.pkg
Upvotes: 4
Reputation: 2278
You have to find out what the name of your pfx is and replace the "commonName" with it.
U should search for something like "Developer ID Application: ..." to sign the package.
Upvotes: 0
Related Questions
- OS X productsign error: Could not find appropriate signing identity
- How to sign DMG and installer for OSX
- Sign a XAR with productsign is corrupting the archive file
- Why the signature is not valid?
- Signing a Package in MAC
- How to use productsign with mpkg containing smaller signed pkg files?
- Whats the difference between codesign and productsign?
- Signing mac installer (pkgmaker)
- CodeSigning pkg file with Installer Certificate in Mac
- Mountain Lion PKG signing