in Tutorials, UE4

Remote iOS build using UE4

A brief tutorial explaining how to configure and set-up a remote iOS build process on Unreal Engine 4 (v4.22+) for testing purposes, without spend money and time on a iOS developer license.

Creating mobile provision files
Remote iOS project set-up

Creating mobile provision files

The first step is to create the two files needed to sign the IPA the mobileprovision and the certificate. To make this files we need a Mac OS X, this method works on a Mac machine or a virtual enviroment, we only need the SO.

For this tutorial we are using macOS Mojave 10.14.4 and Xcode 10.3

Creating a self-signed certificate

We can start creating the certificate for code signing, In the Mac OS machine go to Applications > Utilities > Keychain Access


Select login keychain and My Certificates category


In the menu bar Keychain Access > Certificate Assistant > Create a Certificate


Now we need to fill the certificate information

  • Name: Must starts with “iPhone Developer”, we can add more info like the company name after that
  • Identity Type: “Self-Signed Root”
  • Certificate Type: “Code Signing”
  • Check “Let me override defaults”

Click on Continue


Now we need to define the valid period of the certificate. We are going to establish a perior of 10 years (3652 days).


In the next form we only need to fill the Organization unit field.


We can leave the next form with the default options


In Key Usage Extension check:

  • Signature
  • Certificate Signing

In Extended Key Usage Extension form check:

  • Any
  • Email protection
  • Code Signing

We can continue until the end of the process with the default options.
Now in My Certificates appears our new self-signed certificate. Copy the value of the Expiration date, we will need it in the provision plist.


Our certificate is ready, now we need to create a mobileprovision file

Creating a mobile provision file

Before create the plist file we need the previous certificate in Privacy-Enhanced Mail (PEM) format. To obtain that we can Open a terminal and run

security find-certificate -c “iPhone Developer: com.yourcompany” -p


Now we can create the provision.plist file to configure the mobile provision file.

There is a plist template that can be used:

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
	<string>selfsigned: any app</string>
	<string>Self Signed Provisioning Profile</string>

Available changes:

  • Company, group, team names: the same used in Organization Unit during the creation of the certificate (com.yourcompany), don’t forget the wildcards in some keys
  • CreationDate, ExpirationDate, TimeToLive: The same values than our selfsigned certificate
  • DeveloperCertificates: The PEM of our selfsigned certificate
  • ProvisionedDevices: If you have a device for testing can be added here
  • Name: The name that will appear in the mobile provision profiles list

Now we need to go back to the keychain and export the certificate in p12 format


Fill the output name and set the file format to Personal Information Exchange (.p12)


A promt appears to set a password to protect the access to this file, this password will be used in the next step. Now we have a SelftsignedCert.p12 file.

Now we need an OpenSSL version with support for cms.

openssl:Error: 'cms' is an invalid command.
The version included in OS X has disabled the CMS support. In order to enable CMS support we will have to compile your own version of OpenSSL.
We can compile it in mac using the source code with enable-cms in the configure options, or we can use the version of other platform, like windows, that have the cms support enabled by default.
(I have openssl with cms support already installed in my windows platform so I’m going to copy the SelftsignedCert.p12 and continue the rest of the tutorial using that version, but the process must work in Mac too)

Open a command prompt and run:

openssl pkcs12 -in SelfsignedCert.p12 -out SelfsignedCert.pem -nodes

And put the export password. Now we have created a SelfsignedCert.pem file

In the same command prompt run:

openssl cms -sign -nodetach -in provision.plist -out Selfsigned.mobileprovision -signer SelfsignedCert.pem -outform DER

Finally a Selfsigned.mobileprovision have been created in the folder


With this two files now we can go to configure our Unreal Engine 4 project for iOS remote build:

  • Selfsigned.p12
  • Selfsigned.mobileprovision

Part2: Remote iOS project set-up

Support this blog!

For the past year I've been dedicating more of my time to the creation of tutorials, mainly about game development. If you think these posts have either helped or inspired you, please consider supporting this blog. Thank you so much for your contribution!

Write a Comment


seventeen + 3 =