I think the misunderstanding is you don't have to use apiKey for notarization, you can use an Apple ID app-specific password token to do this as well. You can go to appleid.apple.com, create an app-specific passwords, then use that to notarize, and then you should be able to do this with your own account level permission, which I believe access to Developer Resource is enough, or app manager. xcrun altool --notarize-app -u your_username@company.com -p your_app_specific_password whatever else options you want apiKey is certainly a good option as well, but I still can't figure out how to generate apiKey for app-manager with different apps permission like you can in Users role and connect.

Is there any update on this issue? We still see this in the latest xcode 14 beta3, and the link to the FB10129497 doesn't show anything.

Thank you, yes confirm this is fixed in Xcode14.b3, didn't upgrade properly on my end.