# sign application with self certificate When compiling binary that open port, (depending on your settings) it will ask to allow if the process can make the connection. We can sign our binary with certificate to avoid this. From While RedYeti's link is useful, just to save a few clicks for others let me recap how to generate a code-signing cert and to use it for code (re-)signing: ``` 1. Create your own code signing cert: In Keychain Access, Keychain Access > Certificate Assistant > Create a certificate. This launches the Certificate Assistant: Name: Enter some arbitrary string here that you can remember. Avoid spaces otherwise you'll need to escape the cert's name when using codesign from the command line. Identity type: Self Signed Root Certificate Type: Code Signing Check the box "Let me override defaults", this is quite important Serial number: 1 (OK as long as the cert name/serial no. combination is unique) Validity Period: 3650 (gives you 10 years) Email, Name, etc. fill out as you wish. Key pair info: set to RSA, 2048 bits. Does not really matter IMHO. From "Key usage extension" up to "Subject Alternate Name Extension": accept the defaults. Location: login keychain. Once it is created, set to "Always trust" in the Login keychain. 2. Re-signing an app: codesign -f -s /path/to/app --deep 3. Verify that it worked: codesign -dvvvv /path/to/app Enjoy! ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://til.yulrizka.com/osx/sign-application-with-self-certificate.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.