Endpoint Encryption

 View Only

  • 1.  How to move key pair from server to server

    Posted Jun 17, 2012 06:03 PM

    Hi,

    Maybe this is a simple quesiton, just to make sure my forthcoming deployment is correct.

    I created a key pair and signed the pub key from other party, all encrypt/decrypt woked fine on my development server.

    what are the steps to move the key-pair to Production server?  thanks for sharing in advance.

    -Gene



  • 2.  RE: How to move key pair from server to server
    Best Answer

    Posted Jun 17, 2012 11:39 PM

    First, you can simply move your keyring files (pubring.pkr and secring.skr) over to your new installation.

    Run "pgp --version --verbose" on each machine, and it will tell you where it expects to find the keyrings.  Simply copy the old keyring files to the correct location on the new machine.

    Second, you can export a keypairs using "pgp --export-key-pair [name of key pair to export]" copy this key to your new machine, and import it with "pgp --import".  After you import it, you will need to re-set its trust to "implicit" ("pgp --set-trust keyname --trust implicit").  You will need to export each private key and public key, and import each on the new machine.

    For your deployment, it's probably simplest to just copy over the keyring files.

    Regards,