Your first sync and a tour of the dashboard

Once your first App Store Connect API key is connected, HexSign runs an initial sync that pulls every certificate, provisioning profile, bundle ID, capability, and registered device on the team. Larger accounts can take a couple of minutes; most syncs finish in under thirty seconds.

What gets synced

• Certificates of every type Apple supports (Development, Distribution, Developer ID, Mac Installer, Pass Type ID, Apple Push, and more).
• Provisioning profiles across App Store, Ad Hoc, Development, and Enterprise distribution methods.
• Bundle IDs and the capabilities enabled on each (Push, App Groups, HealthKit, CloudKit, etc.).
• Registered iOS, macOS, watchOS, and tvOS devices with their UDIDs and statuses.
• Sync metadata — counts, changes detected, and duration — visible on the Sync History tab.

Reading the dashboard

The dashboard is a single page with three primary sections: the health score, the expiring-items panel, and the relationship graph. Together they answer the question "what should I worry about, and what depends on what?" before you have to dig into any one entity.

Health score

A 0–100% score based on certificate validity, profile status, and expiration timelines across the connected accounts. Anything red is something HexSign would already have alerted you on.

Expiring items panel

A prioritised list of certificates and profiles approaching expiry. Sorted soonest-first; click any item to jump straight to its detail page.

Relationship graph

An interactive graph linking certificates to the profiles they sign, profiles to the bundle IDs they target, and Development/Ad Hoc profiles to the devices they include. Nodes are colour-coded by health.

Finding individual entities

The sidebar groups everything by Apple-side concept: Certificates, Profiles, Bundle IDs, Devices, and CSRs. Each list is filterable by status (active, expired, revoked, invalid) and by Apple account when you have more than one connected.