My signed .pkg file is not accepted

macos install certificate pkg gatekeeper

I'm struggling with signing my installer to keep Gatekeeper happy.

enter image description here

When building i sign the .pkg:

productsign --sign "3rd Party Mac Developer Installer: GNXXXXXXXXXX (XXXXXXXXXXX)" UnsignedJaXXXXXXXXXX0.5.pkg JaXXXXXXXXXXt0.5.pkg

using this certificate:

enter image description here

When checking with pkgutil I can see that the file is signed:

enter image description here

However still Gatekeeper is not happy.

spctl gives this result:

enter image description here

What am I missing?

Update

spctl with verbose:

enter image description here


Solution 1:

You're using a signing identity that can only be used for Mac App Store distribution. You cannot sign with that identity and test it on your own Mac before submitting it to the Mac App Store - it won't pass GateKeeper validation.

If you want to create an installer for distribution outside the Mac App Store, you'll need to use a signing identity prefixed "Developer ID Installer".

Related

How do I turn FTP sharing on in Lion?
How to create an Automator service to convert images from one file type into another file type using the right-click contextual menu?
Configure IIS 7 Reverse Proxy to connect to TeamCity Tomcat
How to show numerical UIDs/GIDs stored in tar file
how to do a graceful uwsgi reload via bash script?
Add folder to SVN repository without checking out or committing?
Exclude specific domains from Apache2 serverAlias while using a catch all *(wildcard) alias
Chef bash resource not executing as specified user
Can a very large /etc/hosts.deny slow down SSH connections?
How to restrict mailman list subscriptions to certain domains?
node.js, mongodb, redis, on ubuntu performance degradation in production, RAM is free, CPU 100%
Nginx local fallback error page if proxy destination is unavailable