Video Screencast Help

Adding PGP public key to PGP server.

Created: 02 Apr 2013 | 6 comments

Hi there,

I'm hoping that someone may be able to help me with a small problem I'm having. I have a PGP server, to which I need to add a public key so that people in my organisation can send encrypted emails without using the PGP Self Decrypting Archive function within PGP desktop.

I understand the fundementals of PGP, but I'm less familiar with adding keys to the server. I don't want to escalate user priviledges so that any user can sign keys from the desktop, but rather I want to sign the 3rd parties public key at the server level and make it availble to all.

I have read through a PGP server manual, but the steps do not correspond to thje options I have on my PGP server. I would be grateful for any help\advice given.

 

Kind regards.

 

RobW

 

 

Operating Systems:

Comments 6 CommentsJump to latest comment

Alex_CST's picture

If you want to add an external user managed keys, go to Keys > Managed Users then click Add Managed Keys.

Then click on import key, and either import the file, or the keyblock and you're good to go

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

RobW73's picture

HI Alex_CST,

Thanks for the quick reply! I'll try this and let you know if it works.

Kind regards.

Rob Williams.

RobW73's picture

Hi Alex_CST,

 

Yep, that worked a treat! Third party public key is up on our PGP server. Thanks for your help.

 

However as one problem is resolved, another one appears.........(being a PGP novice) I was woindering if you could provide any insight into the following questiosn I have:

 

1. Is there a time lag from when the key is uploaded to the server before it can be downloaded onto PGP desktop.

 

2. How do I sign the public key with our private so that it becomes verified?

 

I really appriate any help\insights you can provide.

 

Kind regards.

 

Rob Williams.

sven_frank's picture

1. Is there a time lag from when the key is uploaded to the server before it can be downloaded onto PGP desktop.

==> Only an extreme short time frame (usually less then a second) when you have a cluster and it needs to be populated between the cluster members (but usually very fast)

 

2. How do I sign the public key with our private so that it becomes verified?

==> Either Sign it with the ORG Key or any other trusted Key like the VKD Key for example and it will become verified for the length of what you have choosen for the signature.

 

If/when you consider your issue resolved, please click Mark As Solution on the most helpful response.

RobW73's picture

HI Sven_frank,

 

Thanks for the addtional help. Can I ask where I might find the ORG key or the VKD key please?

Apologies for the addtional questions, but I'm not used to working with PGP at this level!

 

Kind regards & continued thanks for the all help\answers provided.

 

Rob Williams.

sven_frank's picture

Hi Rob,

the VKD Key is somehting that you create and upload to the UI

I recommend you sign it as Meta Introducer with the ORG Key.

The Org Key can be optained from the Universal UI under Keys. 

After you imported that key within Universal you are good to go and sign it with PGP Desktop. 

How to Sign can be found in the Users Manual 

If/when you consider your issue resolved, please click Mark As Solution on the most helpful response.