Try productsign . I'm assuming that you are using the Developer ID Installer certificate and not the Developer ID Application certificate for the package/distribution. On Thu, Mar 29, 2012 at 8:27 AM, Vikram Singh <vikram731@gmail.com> wrote:

Hi,

I am having some weird problem in signing my installer packages. Following are the details- I have a developer id certificate. I have tried signing using "packagemaker --sign" and "codesign" utility. Whenever I sign the packages, it successfully signs it. Then I downloaded that package and tried running it. It pops up a dialog saying that "It is not validly signed and may damage your computer". However, when I try to check if the package is signed using "pkgutil --check-signature" , it tells me that the package is signed and shows the certificate chain.

Does anybody know what might be causing this problem? If the package is signed, the message should not popup. Is my developer id certificate not valid? I am doing this for 10.8 support so that my packages get installed when users have GateKeeper activated. So any help on this will be really useful.

Thanks, Vikram

 _______________________________________________ Do not post admin requests to the list. They will be ignored. Installer-dev mailing list      (Installer-dev@lists.apple.com) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/installer-dev/dev.iceberg%40gmail.co...

This email sent to dev.iceberg@gmail.com

_______________________________________________ Do not post admin requests to the list. They will be ignored. Installer-dev mailing list (Installer-dev@lists.apple.com) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/installer-dev/site_archiver%40lists.... This email sent to site_archiver@lists.apple.com