Desktop Email Encryption

Hi,

A PGP Desktop user I support forgot their passphrase and attempted to reset it, however they got the error "PGP is unable to obtain reconsrtuction data for this key from the server."

Looking at their record on the server, their Key Reconstruction Block is not present.  They told me that they set security questions when it was installed so I don't know why it wouldn't be generated.

Just wondering if anyone else had experienced this issue or knows what causes it to happen.

Thanks,

Hello,

Have you checked the server to make sure the Key reconstruction box is checked?  Consumers, Consumer Policy, select your policy or default, Click on Desktop, General tab.  Key re-construction is on this page in policy.

At this point the key is not recoverable.  You'll have to re-enroll the user to the PGP server.

1. Exit PGP services

2. Windows Run %appdata%

3. Delete PGP corporation folder

4. Change the file name where the PGP keys are stored on the local client.  Usually by default this is Documents>My Documents>PGP unless the backup location was changed.  (Example PGP.old)

5. Delete the user profile off the server.

6. Start PGP on the client machine.  Enrollment window should pop up and enter your credentials.

If client is in GKM mode for their keys then the renaming of the PGP folder and deleting the profile off the server will have to be done.  If you re-enroll without the changes then the client will still have the same key after enrollment.

Thanks

Anthony