Skip to main content
Jamf Nation, hosted by Jamf, is a knowledgeable community of Apple-focused admins and Jamf users. If you like what you see, join us in person at the ninth annual Jamf Nation User Conference (JNUC) this October for three days of learning, laughter and IT love.

Verifying that a Package is Signed

When Apple’s Gatekeeper feature is set to only allow applications downloaded from the Mac App Store and identified developers, users can only install signed packages.

To verify that a package is signed, execute the following command on a computer with the package:

pkgutil --check-signature /path/to/package.pkg

If the output is "Status: signed by a certificate trusted by Mac OS X", the package is signed. If the output is "Status: no signature", the package is not signed.

Like Comment
Order by:
SOLVED Posted: by Sonuw

Hi Erin,
Thanks for the post of this article. Just to inform you that there is typo in the above given terminal command...
pkgtutil --check-signature /path/to/package.pkg
right terminal command is pkgutil --check-signature /path/to/package.pkg

Like
SOLVED Posted: by erin.miska

Hi Sonu,

Good catch. This is fixed.

Thanks for letting us know!

-Erin

Like
SOLVED Posted: by donmontalvo

Nm

Like