Today, I downloaded Plex Media Server for the first time. On unzipping the file and double-clicking the app, I get a code-signing error: “Plex Media Server.app” can’t be opened because the identity of the developer cannot be confirmed.
(I know how I can bypass the error, but don’t like doing that and wanted to flag the problem to the developers.)
I’m on Mojave (10.14.6). I checked the SHA sum of the zip that I downloaded, and it matches what’s on the page (17c326fe66afa65cb70c645b432805a59481a3f3).
As a long time Plex subscriber, I can assure you it is safe to accept ALLOW from the Gatekeeper in System preferences in this case. As long as you downloaded Plex from.
That’s really interesting and weird, because the app is codesigned by Plex. I wonder if it has anything to do with the no-longer-supported-by-Apple version of the OS?
I assume you’ve already got Security set to “App Store & Identified Developers”, or whatever the verbiage is.
Can you post the output from this?
codesign -dv --verbose=4 "/Applications/Plex Media Server.app"
Here’s mine:
Executable=/Users/[blah]/Downloads/Plex Media Server.app/Contents/MacOS/Plex Media Server
Identifier=com.plexapp.plexmediaserver
Format=app bundle with Mach-O thin (x86_64)
CodeDirectory v=20500 size=131207 flags=0x10000(runtime) hashes=4093+3 location=embedded
VersionPlatform=1
VersionMin=657664
VersionSDK=721152
Hash type=sha256 size=32
CandidateCDHash sha1=61b79a44d8abc586e15b39b2347367e1f9a806dc
CandidateCDHashFull sha1=61b79a44d8abc586e15b39b2347367e1f9a806dc
CandidateCDHash sha256=cb706729f436feb3b3ecdaa874f890cdfbbd5109
CandidateCDHashFull sha256=cb706729f436feb3b3ecdaa874f890cdfbbd5109aad47123fceb25aa91dcd354
Hash choices=sha1,sha256
CMSDigest=199289861154b7b13bc5efeb3721158684aef93fdc82eaee2450f1ba84f2f559
CMSDigestType=2
Executable Segment base=0
Executable Segment limit=15810560
Executable Segment flags=0x1
Page size=4096
CDHash=cb706729f436feb3b3ecdaa874f890cdfbbd5109
Signature size=9050
Authority=Developer ID Application: Plex Inc. (K4QJ56KR4A)
Authority=Developer ID Certification Authority
Authority=Apple Root CA
Timestamp=Apr 4, 2022 at 10:48:53 AM
Info.plist entries=19
TeamIdentifier=K4QJ56KR4A
Runtime Version=11.1.0
Sealed Resources version=2 rules=13 files=2197
Internal requirements count=1 size=220
Weirdly, the codesign tool seems to indicate no problems. Yes, the security setting is to allow signed apps. Along with codesign and spctl, I checked system.log and found no relevant errors. Could be the old OS, though this is the first time I’ve encountered this problem (and I’ve downloaded many an application before). I suppose I’ll just chalk it up to OS weirdness and bypass Gatekeeper…
