Home > Mac administration, Mac OS X > Certificate expiration and downloaded Mac App Store installers

Certificate expiration and downloaded Mac App Store installers

February 15, 2016 Leave a comment Go to comments

Mac admins who have previously downloaded installers from the Mac App Store may be seeing some of those installers displaying warning messages and/or failing to install as of this morning.

Screen Shot 2016 02 15 at 8 20 31 AM

This behavior is now appearing because the certificate Apple had been using to digitally sign installers for MAS apps has recently expired.

https://twitter.com/hunty1er/status/699048693316476928

Screen Shot 2016 02 15 at 8 20 35 AM

Apple is handling the issue on their end by reissuing installers, which are signed with an updated certificate that expires on February 7, 2023. If a needed application with the correct version is still available from the MAS, the easiest fix may be to re-download the installer from the MAS. The newly-downloaded installer will be signed with the new certificate.

Screen Shot 2016 02 15 at 8 20 12 AM

In the case of applications where the needed version is no longer available from the MAS, or the application itself is no longer available, there are two ways to handle this issue:

Categories: Mac administration, Mac OS X
  1. Gur
    February 18, 2016 at 12:59 pm
    Reply

    Having this issue with OS X installers, from Mavericks to El-Capitan.
    Is there a way to allowuntrusted to this problem?
    BTW, if using createOSXinstallPkg, the problems doesn’t happen.

  2. NOTmario
    February 23, 2016 at 7:57 pm
    Reply

    Change computer date to something before expiration to use older packages. I tested a bunch of install configs for my laptop 2 weeks ago using my last downloaded Mavericks installer, sat down to run the real install yesterday and osx installers refused to verify and run, all of them even back ups. I noticed this same cert issue and just changed time accordingly, BAM mavericks installing.

  3. Dan Jackson (@danj2k)
    February 6, 2018 at 2:07 pm
    Reply

    Is there a way to check before installing what certificate an installer has in it?

  1. No trackbacks yet.

Leave a comment