Signing Manager

Local Signing of iOS Apps, macOS Apps, and Packages with Remotely Secured Identities

Free Download Buy Support

Secure Your Signing Identities

Signing Manager for macOS provides an ideal system for securing the code and package signing identities. Implement secure access to the identities with API keys, access controls, and auditing. Gain full control over iOS, macOS, watchOS, and iPadOS signing operations without disrupting the current workflow. Works great for developers, CI/CD servers, or for any size team that releases software on Apple hardware.

See It In Action


  • Sign apps and packages without direct access to private keys
  • Local signing with native Apple tools
  • Limit signing operations based on API key
  • Signing Service on Linux, macOS, or Windows
  • Full auditing of all signing operations
  • Easy updating of expired certificates
  • Command line interface for CI/CD servers
  • Open source

Support Plans

  • Pro Support
  • $499
  • Yearly
  • Unlimited Clients

    Phone support & email support

    2 support requests per month
    (3 business-day response time)

  • Get Quote
  • Enterprise Integration
  • Contact Us!
  • ¬†
  • Customized integration with internal systems including web APIs and HSM
    (Hardware Signing Modules)

    Customized authentication to extend the basic API key for your organization

  • Contact Us


All the private keys associated with the code signing or package signing certificates are not exposed to the process doing the signing. Only approved requests are allowed to perform signing operations, and an audit log is kept of all signing operations.

Easy To Use

The Signing Manager app just requires an API key and a URL. Once those values are configured, certificates are available for signing operations. The certificates are automatically added to the keychain and are shown in the Signing Manager. Apple signing tools request the certificate based on a fingerprint or name of the certificate, and Signing Manager handles the rest.

Server or Developer

All operations for configuring Signing Manager, discovering certificates, and signing binaries can be done on the command line, so it makes for an ideal solution for Developers using Xcode, Release Managers, or CI/CD Servers.

Easy to Update Certificates

Since certificates and private keys are not installed on developer or build servers, updating an expired certificate is easy. When the certificate expires, the certificates and keys are updated on the Signing Service, and all operations continue.

Open Source

Both the Signing Manager macOS app and the Signing Service are released as open source software¬†under the GPL-3 license. Other licenses are available to include the software in your projects. Code can be audited and customized to fit your organization’s needs. You can also work with Twocanoes Software to update the project for benefit of all who use it.

System Requirements

  • Current Version: 1.1 (Build 334)


  • macOS 10.15 Catalina or later


  • macOS, Linux, or Windows system capable of running Node.js 12 or later.
  • Certificate and private keys for signing macOS, iOS, watchOS, and iPadOS code and packages.

Signing Manager News & Tips

Signing Manager & Signing Service Guide

Created OnMay 7, 2021Last Updated OnMay 7, 2021byFederico HernandezCurrent Version 1.3 Overview Signing Manager is a macOS application for code signing and package signing using remote identities. It includes a CryptoTokenKit extension for presenting X.509 certificates to the macOS keychain for use in cryptographic signing operations, using built in commands such as codesign and productsign….


Signing Manager Quick Start Guide

Created OnApril 12, 2021Last Updated OnMay 7, 2021byFederico HernandezSigning Manager is a macOS app to enable Code Signing on remote systems without access to the private key. It works with built-in Apple tools such as Xcode, codesign, and productsign. Signing Service is a service to store and limit access to sensitive signing identities. It can…