Thanks for popping over to DevForums (-:
I presume you’re talking about digital identities, not certificates. That is, the payload type is
com.apple.security.pkcs12
. If you’re trying to sign something, you need the private key and it’s the presence of that private key that makes for a digital identity.
Unfortunately there isn’t a way to get at these directly. QA1745 Making Certificates and Keys Available To Your App explains this in some detail.
IMO it would be nice if configuration profiles had a way to place a digital identity in a specific keychain access group, so an admin could push a profile with a digital identity that’s available to your app. If you’d like to see such support added to the system, I encourage you to file an enhancement request describing your requirements.
As to workarounds, the best approach depends on the specific of your environment. First things first, are you deploying to a managed environment? Or to general users via the App Store?
Share and Enjoy
—
Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware
let myEmail = "eskimo" + "1" + "@apple.com"