Endpoint Encryption

We have migrated our PGP software from PGP 8.x to 10.x  and have copied the key ring files from the previous version to the version which we have installed in our new machine as per the suggestion given in the forums. Now we can encrypt the files and decrypt the files in the new server correctly. But when we remove or import new keys to the PGP software we are getting the error “invalid Key”. We are importing the key and also sign the key with the pass phrase, but still get the same error invalid key.

Configuration details:

Old Server: Solaris

PGP version: 8.x

New server: Linux

PGP version:10.x

I'm not into the command line usage, so don't know the command for doing so, but suspect that your private key is not set as having Implict Trust, and that if you do so, that will take care of the problem.

Tom is correct. You do need to set the keypair to having implicit trust.

The user guide for command line 10.1 does list this on page 140. The example command for that is:

 pgp --set-trust 0x12345678 --trust implicit 

Hi Tom & paulhen thanks for your suggestion.

I have set the trust level to implicit for my private key, but still I am getting the same error "Key invalid".

"Key invalid" means that you haven't signed the key, and therefore confirmed that the key actually belongs to that user.  This is a warning and can be ignored if you so wish (the encryption will succeed).

See the section on "Invalid Keys" in Appendix C ("Frequently Asked Questions") of the PGP Command Line User's Guide.

This should only apply to public keys.  Once you set implict trust on a keypair, it should no longer be considered invalid.  Do you have a key pair that has implicit trust but is sitll considered invalid?  What is the output of running "pgp --list-keys [userid of invalid keypair]"?

Thanks,