PGP: Message is blocked by policy - recipient key not found

Article:TECH149859  |  Created: 2010-06-25  |  Updated: 2011-02-05  |  Article URL http://www.symantec.com/docs/TECH149859
Article Type
Technical Solution


Issue




When sending an email to a group of recipients, mail delivery fails and you receive a message similar to the following:

Your Message did not reach some or all of the intended recipients.

Subject: Other

Sent: 2/26/2010 14:37

PGP: Message is blocked by policy - recipient key not found. Error code: [0xa101000c].



Solution




This message is received when PGP Desktop is unable to find a key for one or multiple recipients in group list and then blocks the message from being sent. Beginning in PGP Desktop 10.1, an advanced preference can be added to display the email addresses for recipients whose keys were not found. The email addresses are displayed in the Error Details of the Non-Delivery Receipt as shown below:

PGP: Message is blocked by policy - recipient key not found. Error code: [0xa101000c].

The original message is embedded in this non-delivery report. Click Send Again to see the original text and have the opportunity to re-send the message. If the problem persists and you still receive another non-delivery report, please contact your administrator for details.

Error Details:
Your message cannot be delivered to the following recipient(s) because PGP Desktop was unable to locate the necessary encryption key(s):

akimura@example.co.jp
bsmith@example.com
mhall@example.co.uk


This advanced preference is available for both stand-alone and managed PGP Desktop clients.

To enable the preference on a PGP Desktop stand-alone client

  1. Stop the PGP services by clicking the PGP Tray icon and selecting Exit PGP Services. Then click Yes.
  2. Browse to the PGP Corporation > PGP folder in the user's profile.

    Windows XP: Click Start > Run and type %appdata% and click OK. Then click the PGP Corporation > PGP folder.

    Windows Vista & Windows 7: Click Start and type %appdata% and press Enter. Then click the PGP Corporation > PGP folder.

  3. Right-click the PGPprefs.xml file and select Open With > WordPad. The PGP preferences are displayed.
  4. Add the following entry to the PGPprefs.xml file:

    <key>mailShowKNFRecipientsInNDR</key>
    <true></true>

  5. Click File > Save.
  6. Close Wordpad.
  7. Restart PGP Services by clicking Start > All Programs > Startup PGPtray.exe.
To enable the preference for PGP Universal Server 3.x managed clients

  1. Login to the PGP Universal Server admin interface.
  2. Click Consumers > Consumer Policy.
  3. Click the desired policy to edit.
  4. On the Consumer Policy Options screen select Edit next to General.
  5. Scroll down and click Edit Preferences.
  6. In the Pref Name: field type mailShowKNFRecipientsInNDR
  7. Leave the Type as Boolean .
  8. In the Value field, type true.
  9. Click Save.


Legacy ID



2104


Article URL http://www.symantec.com/docs/TECH149859


Terms of use for this information are found in Legal Notices