App-specific password not available from Managed Apple ID

This is a solved problem, but a detail not in any docs I could find and I could only get answered from support. Figured I'd add it to the index.


App-specific passwords are not supported with Managed Apple ID created through Business Manager. You will simply not see the option to create an app-specific password even if you do have two-factor authentication turned on.

Up vote post of tt-mwarren Down vote post of tt-mwarren
2.2k views
Posted by
tt-mwarren
Reply

  • If it's solved. Could you please help us how you solved the problem.

    skappdevloper
Add a Comment

Replies

If it is solved, what is the solution? How do you bypass the requirement for having an app-specific password for notarizing apps, f.x.?
Posted by
addih
Post not yet marked as solved Up vote reply of addih Down vote reply of addih
Add a Comment
Many businesses are starting to use Managed/Federated Apple IDs.
Many businesses also develop apps for Mac.
If we can't notarize apps with a managed Apple ID, what account are developers supposed to use?
App-specific passwords should be allowed for Managed Apple IDs so that separate Apple IDs aren't required for notarizing only.


Posted by
prbsparx
Post not yet marked as solved Up vote reply of prbsparx Down vote reply of prbsparx
Add a Comment

What is the solution, please?

Posted by
adr-copyright
Up vote reply of adr-copyright Down vote reply of adr-copyright

  • I have just come across the same problem. I have dev licence in order to repackage apps but am.not able to do so as i linked it to my Managed Apple ID. How do we get aroind this issue? Dont understand why app specific passwords are not available!

    AlexLedger
Add a Comment

I'm also looking for a solution to this!

Posted by
badcom
Up vote reply of badcom Down vote reply of badcom
Add a Comment

Are you able to create an App Store Connect API key? You would do this in App Store Connect > Users and Access > Keys > App Store Connect API.

If so, you can configure notarytool to use that. Specifically, run notarytool as follows:

% xcrun notarytool submit --key PPP --key-id K‍KK -i III'

where PPP is the path to the key’s .p8 file, K‍KK is is the key ID (10 alphanumeric characters, visible in App Store Connect), and III is the Issuer ID (a UUID, also visible in App Store Connect).

T9GPZ92M7K

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Add a Comment

Hey Quinn,

The new notarytool is great, and it's nice that we can use App Store Connect API keys. But you can only generate 50 API keys, and the data should be protected... For extremely large enterprises like the one I work for, I can't generate 1 key for every team. I hit our limit.

We could build a central service to notarize, but we don't have that currently, and I don't know that we ever will.. though I'm investigating that.

There really needs to be a way for Managed Apple IDs to be used fully with the developer program. I don't want my developers using non-managed apple IDs to access our dev program. To me that's a risk.

Love that this was built to help automation, but would really like to see businesses be able to generate app password for users in ABM. Even if it means a People Manager has to enable it for the user.

Posted by
prbsparx
Up vote reply of prbsparx Down vote reply of prbsparx
Add a Comment

[I] would really like to see businesses be able to generate app password for users in ABM.

The best way to get that feedback to the folks who have the power to enact change is to put it in a bug report against the notary service.

Please post your bug number, just for the record.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Add a Comment