Endpoint Encryption

Hi - We're moving our apps to a new datacenter and need to move PGP CommandLine, associated keys to a new server there.

Our users upload PGP encrypted files via FTP to our server for scripted decryption and pocessing. The new FTP server is in place, new scripts ready. I just need to  transfer the license and keys to the new server.  Is it possible to do this before we go live? I don't want to purchase another license, but it would be very good to be able to test everything before we cut production over. Testng should only take a day or so. Please advise.

Thanks,

Dan

Yes, you can do what you are asking.  Section 3c of the EULA states:

Non-Production Server and Outsourced Services. This license authorizes you to internally install and use PGP Command Line on an equivalent number of non-production servers as the number of your Licensed Servers solely for redundancy, staging and/or testing purposes; provided that the copies you make contain all of PGP Command Line’s copyright, trademark, and other proprietary rights notices.

Regards,

Thanks, David.

As I recall there are two files I need to move from the old server to the new one in order to transfer the keyring. I saw the information once on forum.pgp.com, but it looks like that forum has been shut down.

Thanks again,

Dan

The most important information to transfer over are your keys.  You can do this in two ways:

1.  Simply copy the public and private keyring files (pubring.pkr, secring.skr) from one machine to the other.  This is the simplest way.

2.  Export all the keys you care about ("pgp --export" for the public keys, and "pgp --export-key-pair" for your private keys).  After you import them, you'll need to re-set the trust of your key pairs.

If you have edited your preferences file PGPprefs.xml, you can copy that over as well, but you will likely need to re-edit it to account for file path changes.  It's probably easier to make any edits again in your new preferences file.

Regards,