Video Screencast Help

How to move key pair from server to server

Created: 17 Jun 2012 • Updated: 19 Aug 2012 | 1 comment
This issue has been solved. See solution.


Maybe this is a simple quesiton, just to make sure my forthcoming deployment is correct.

I created a key pair and signed the pub key from other party, all encrypt/decrypt woked fine on my development server.

what are the steps to move the key-pair to Production server?  thanks for sharing in advance.


Comments 1 CommentJump to latest comment

dfinkelstein's picture

First, you can simply move your keyring files (pubring.pkr and secring.skr) over to your new installation.

Run "pgp --version --verbose" on each machine, and it will tell you where it expects to find the keyrings.  Simply copy the old keyring files to the correct location on the new machine.

Second, you can export a keypairs using "pgp --export-key-pair [name of key pair to export]" copy this key to your new machine, and import it with "pgp --import".  After you import it, you will need to re-set its trust to "implicit" ("pgp --set-trust keyname --trust implicit").  You will need to export each private key and public key, and import each on the new machine.

For your deployment, it's probably simplest to just copy over the keyring files.



David Finkelstein

Symantec R&D