@JamesMontemagno just posted a blog about simplifying app signing with secure siles in Visual Studio Team Services.
Read it HERE. Feel free to comment and discuss below
Can both the Android and iOS apps be built using the 'Hosted' agent queue?
There are currently PC and Linux hosted agents.
You can install an agent on any Mac though locally or you can use mac in cloud: https://support.macincloud.com/support/solutions/articles/8000016614-getting-started-with-the-macincloud-vsts-build-agent-plan
@JamesMontemagno - We're trying to put this into practice and switch to the new hosted mac agents.
Both the cert install and provisioning profile installs steps both run without issue and appear to work correctly from what I see in the logs.
The error we end up with is familiar, no valid iOS code signing keys:
/Library/Frameworks/Mono.framework/External/xbuild/Xamarin/iOS/Xamarin.iOS.Common.targets(606,3): error : No valid iOS code signing keys found in keychain. You need to request a codesigning certificate from https://developer.apple.com. [/Users/vsts/agent/2.126.0/work/1/s/App/Field.Mobile/Field.Mobile.iOS/Field.Mobile.iOS.csproj]
To double check, we should be using only production certificates, with passphrases of course, and downloading the production provisioning profile from the apple developer portal.
What next steps would you recommend for troubleshooting this build on a hosted mac agent?
Are you using the Install steps?
Install an apple cert
Install an apple provisioning
In your csproj do you have something set for the actual profiles that are trying to be used?
Xamarin Inc., as a wholly-owned Microsoft subsidiary acting as a separate legal entity, adheres to the Microsoft Privacy Statement: Privacy & cookies