How to: Convert a PGP Desktop Standalone installation package for Mac into a Managed PGP Installation package.
| Article:HOWTO77365 | | | Created: 2012-07-26 | | | Updated: 2012-09-26 | | | Article URL http://www.symantec.com/docs/HOWTO77365 |
Standalone Client: Package that is not managed by a PGP Universal Server. License information must manually be entered in order to use features of the PGP Desktop client. Policies are managed on the standalone client itself.
Managed Client: Package created by PGP Universal Server in order for PGP policy to be managed by the PGP Universal Server.
PGP Universal Server is normally used to “Customize” the installation package of PGP Desktop for Mac in order to be managed by the PGP Universal Server. In order to customize a PGP installation package, it is normally downloaded from the PGP Universal Server by clicking a “Customize” checkbox. Once a PGP Desktop package has been customized by the PGP Universal Server, a “PGP Stamp” entry is created, which would then allow the end user to be able to install and enroll to the PGP Universal Server.
In order for the PGP Desktop Standalone install package for Mac to be able to communicate with the PGP Universal Server as a “Customized” install, the package itself can be modified. Once modified, the previously Standalone client can then go through the enrollment process and communicate with PGP Universal Server for policy.
Modifying the PGP Desktop installation Package for Mac on a Windows system:
1. Obtain the PGP Desktop standalone installer. A Standalone PGP Desktop 10.2 installer file would typically take the form of “PGPDesktop10.2_MacOSX.tar.gz”
2. Extract the file until the PGP.pkg folder is available. It may take multiple extractions of the file. Use an extraction tool that supports many different zip/compression types such as 7zip, in order to extract “.tar.gz”, “.tar” and .dmg files. Once the the tar.gz are fully extracted, this should eventually yield a .dmg file. The 7zip utility can also be used to extract this type of file.
3. Once the .dmg file is extracted, a file “0.hfs” will be available, extract this file as well and a folder called “PGP Desktop” will be available—this is the folder that contains the installation package for PGP Desktop for Mac.
4. Open the PGP Desktop folder from the previous step and navigate to the PGP.pkg folder, then Contents, then Resources, and place a text file in the Resources folder called “policy.txt”.
5. In the policy.txt file, add the following line, which provides the logic for the client to communicate with PGP Universal Server:
ovid=keys.example.com&mail=*&admin=1
Where “keys.example.com” is the FQDN of the PGP Universal Server.
TIP: It may be a good idea to locate the existing entry on another Mac client that is already managed by the PGP Universal Server. On the managed client, open terminal and type the following command:
cat /Applications/PGP.app/Contents/Resources/policy.txt
Use this value in the policy.txt file.
Alternatively, go to a Mac client that has already been enrolled and simply copy the policy.txt file and place it in this directory.
6. Once the policy.txt file has been modified, save the file. You should now have a policy.txt file in the PGP Desktop\PGP.pkg\Contents\Resources folder.
7. Now the PGP.pkg file can be used to perform the installation, which can now enroll to and be managed by, the PGP Universal Server.
Modifying the PGP Desktop installation Package for Mac on a Mac system:
1. Obtain the PGP Desktop standalone installer. This file typically takes the form of “PGPDesktop10.2.1MP2HF3_MacOSX.tar.gz”
- Extract the file until the PGP.pkg file is available.
- Right-click (ctrl+click) on the PGP.pkg and select “Show Package Contents”
- Navigate to the Contents folder, then Resources.
- In the Resources folder, place a text file in there called “policy.txt”.
6. In the policy.txt file, add the following line, which provides the logic for the client to communicate with PGP Universal Server:
ovid=keys.example.com&mail=*&admin=1
Where “keys.example.com” is the FQDN of the PGP Universal Server.
TIP: It may be a good idea to locate the existing entry on another Mac client that is already managed by the PGP Universal Server. On the managed client, open terminal and type the following command:
cat /Applications/PGP.app/Contents/Resources/policy.txt
Use this value in the policy.txt file.
Alternatively, go to a Mac client that has already been enrolled and simply copy the policy.txt file and place it in this directory.
7. The policy.txt file show now be in the PGP.pkg\Contents\Resources folder.
8. Now the PGP.pkg file can be used to perform the installation, which can now enroll to and be managed by, the PGP Universal Server.
PGP Desktop 10.2.1 MP4 Modification Steps for Mac OSX 10.8 and 10.8.1 Support
With the new GateKeeper functionality built in to Mountain Lion (OSX 10.8), modifying requires new steps in order for the install to complete.
1. Modify the PGP.pkg file in the same manner as the above, but instead of placing the policy.txt file into Contents/Resources, place the file into Contents/_CodeSignature.
|
|
Article URL http://www.symantec.com/docs/HOWTO77365
Terms of use for this information are found in Legal Notices
Thank you.