I ran out of Developer ID Certificates - Second Developer Account?

Hello,

I ran into a big problem for which I don't know how to proceed. Every developer can create up to five Developer ID certificates. Those certificates are used if you want to release your app outside the Mac App Store.
I have an app on the Mac App Store that also offers a helper application, which is downloadable on my homepage.
I have created a new version of this helper application and wanted to send it to the notarization service of Apple.

Xcode displayed an error that I do not have a valid Devloper ID certificate (because the private key is missing) and I can not create a new one because I already created five certificates.

I can download the certificates without problem, but I can not get the private key. At least one developer certificate was created on my machine, but It does not seem to work.

Because I assumed that there is no way of getting these certificates back (always create backups!), I contacted Apple to see if they are willing to revoke any old certificates so I can create a new one (I know that at least the first two certificates are not being used, so they could be revoked, but Apple does not revoke old certificates).

Right now, Apple decides whether they grant me an exception to create additional certificates.

Let's assume Apple declines this request...what can I do? Can I create a second developer account? I don't care about the 99€, but it does not seem that this is allowed.

Big Sur will be released tomorrow and I really need to sign this app.

And yes, I know that I should keep a backup copy of my private keys in the future ;)

Is there anything I can do (especially if Apple declines the request)?

Any help is highly appreciated.

Kind Regards,
Sascha
Answered by DTS Engineer in 645515022
I’m going to post a link to my thoughts on this topic, just for the record. I don’t think anything in there will be news to you, alas. And, specifically, I don’t have an answer to this question:

Is there anything I can do … if Apple declines the request … ?

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"
Accepted Answer
I’m going to post a link to my thoughts on this topic, just for the record. I don’t think anything in there will be news to you, alas. And, specifically, I don’t have an answer to this question:

Is there anything I can do … if Apple declines the request … ?

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"
Thank you for your answer.
Just out of curiosity: Apple refuses to revoke old certificates. Can you maybe tell me why? I am absolutely sure that the first two certificates that I had created are not being used.

I can absolutely understand that certificates are not something that are handed out without any hesitation (or maybe not at all), but in my case a simple workaround would be to simply revoke one or two certificates so I can create a new one.

Regards,
Sascha

Apple refuses to revoke old certificates. Can you maybe tell me why?

Revoking Developer ID certificates is a big deal. Apple only revokes them in dire circumstances.

a simple workaround would be to simply revoke one or two certificates
so I can create a new one.

You have missed a key point here. The limit on the number of Developer ID certificates is not there because having more than N certificates available at any time causes problems. It’s there to prevent folks from creating Developer ID certificates willy nilly. So revoking an old certificate doesn’t make ‘space’ for a new one.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"
Just an update if anyone ever runs into the same problem:

I am still waiting for an answer to my support ticket that I created almost 4 months ago...

I do not want to create another developer account, because I do not know if this is ok to own more than one developer account as an individual. But I really don't know what else to do, because I can't (and don't want to) wait any longer.

I messed this up, so I don't (and can't) want to blame Apple for this. But it seems like a pretty straightforward yes/no answer. Either grant the exception or don't. But at least let me know...

I didn't realize there was a limit and have reinstalled macOS several times since creating the certs without backing up my private key file(s). I've asked to delete or add a few additional certs to my account but it's been 4+ weeks and they are still "working on it". What a mess. I no longer can sign apps and am still paying $99 a year for that privilege. Seems like some sort of warning or message to backup private keychain entries somewhere might have been nice (or a warning when creating the last one I had available)...

I ran out of Developer ID Certificates - Second Developer Account?
 
 
Q