Hi,
I am following a tutorial regarding signing and notarizing a Mac app, and am repeatedly running into an issue when creating the Developer ID Installer certificate. Per the tutorial I have completed the following steps:
- Enrolled in the Apple Developer Program - done
- Create a Developer ID Application certificate - done
To create the Developer ID Application certificate, I opened the Keychain Access app on my Mac (M1), navigated to Certificate Assistant > Request a Certificate From a Certificate Authority, supplied my email address, and saved the CSR to my hard drive. I then went to https://developer.apple.com/account/resources/certificates/list and generated the Developer ID Application certificate.
I then attempted to generate the Developer ID Installer certificate, also via https://developer.apple.com/account/resources/certificates/list. When I do this, I specify the same CSR that I used for the Developer ID Application certificate. When I click Continue I receive this error message in a popup:
"The uploaded CSR file has already been used to generate another certificate. Please create a new CSR and upload."
Advice appreciate, this is all new to me and I can't seem to find anyone else confused about this matter.
Thank you, Jason
Ah, um, you should do what it says, that is, create a new CSR and use that for your Developer ID Installer signing identity.
Each CSR contains a public key for which you have the private key. The Developer website requires that you use different public key for Developer ID Application and Developer ID Installer identities. That’s a pretty reasonable requirement IMO.
For the backstory here, see Certificate Signing Requests Explained.
For general advice as to the care and feeding of Developer ID credentials, see my posts on this thread.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"