Hi @DTS Engineer
Also, we tested the package following the instructions you provided, so we completely disabled the network. Because of this, the machine couldn't verify notarization without stapling.
Post
Replies
Boosts
Views
Activity
Hi @DTS Engineer
We also ran following command and after that notarization worked:
xcrun stapler staple ./test.pkg
Hello @DTS Engineer,
We did following, but still facing issue:
14:04:39 + xcrun notarytool submit --key **** --key-id 123456789 --issuer abcd-efgh-1234 --wait './name.pkg'14:04:39 Conducting pre-submission checks for name.pkg and initiating connection to the Apple notary service...14:04:41 Submission ID received14:04:41 id: abcd-efgh-1234 14:04:56 Successfully uploaded file14:04:56 id: abcd-efgh-1234 14:04:56 path: name.pkg14:04:56 Waiting for processing to complete.14:06:56 Current status: In Progress... Current status: In Progress.... Current status: In Progress..... Current status: In Progress...... Current status: In Progress....... Current status: In Progress........ Current status: In Progress......... Current status: In Progress.......... Current status: In Progress........... Current status: In Progress............ Current status: In Progress............. Current status: In Progress.............. Current status: In Progress............... Current status: Accepted................Processing complete14:06:56 id: abcd-efgh-1234 14:06:56 status: Accepted
And on other macOS we tried to open package:
Hello @DTS Engineer
Let me do more checks as you said.
I will post my feedback asap.
@DTS Engineer
Hello,
Seems I accidentally pressed, "Accept Answer", but in reality, topic is still open for me :)
Looking forward to hear your comments.
Thanks,
Rovshan
Hello @DTS Engineer
This is what we do:
# Executing the command on the machine where the notarization was performed via API Key:
% sudo spctl -a -t install -vvv PackageName.pkg
PackageName.pkg: accepted
source=Notarized Developer ID
origin=Developer ID Installer: OrgName (ID)
# The same package is copied to another machine (e.g. via scp). Executing the same command on the same package on another machine:
% sudo spctl -a -t install -vvv PackageName.pkg
PackageName.pkg: rejected
source=Unnotarized Developer ID
origin=Developer ID Installer: OrgName (ID)
Follow up:
# Machine where notarization is done:
% sudo spctl -a -t install -vvv example.pkg
example.pkg: accepted
source=Notarized Developer ID
origin=Developer ID Installer: company name (ABCXYZ123)
# Same package, different machine:
% sudo spctl -a -t install -vvv example.pkg
example.pkg: rejected
source=Unnotarized Developer ID
origin=Developer ID Installer: company name (ABCXYZ123)