Endpoint Encryption

Hi - My company owns 1 PGP license, and we need to move that license to another users computer. I've seen the instructions for moving PGP to another computer, but the problem here is this will be a different users computer.  We use PGP to encrypt emails sent to one specific clients email address, so I dont know exactly how go to about doing this, because wont the keyring info need to be changed?  Can somoene please provide me assistance on how to do this?   Thanks.

Maybe I'm missing something?

Sounds like you can just install PGP on the new computer, use the existing license info to license it (just as if you were now installing it for the first time), generate a key for the new user (using the new user's name and email address); and then uninstalling PGP from the old computer.  If for some reason you will need to be able to continue decryption of past encryption to the existing "old" user, before uninstalling you can export the key from the old installation (making sure to include the check for inclusion of the private key) and import this key to the new installation.  How to do all this is included in the User's Guide.

Hi Tom - Thank you for your quick response.  The part that confuses me about putting PGP on the the new users machine, is that if im generating a new key for this "new user", then how will it know to automatically encrypt sent emails to this 1 client we send emails to like it current does on the "old user's" machine.  Is that a manual configuration i would have to make?  Sorry, im unfamiliar with this product and have never had to configure this before. 

What version of PGP is being used?

All the recent versions normally encrypt by use of the PGP email proxy.  You need to import the recipient's public key into the user's keyring and sign it with your key to have it shown as Valid (meaning that you have determined that the key really belongs to who it is suppose to belong to). When you send email, PGP will then check the keyring to see if you have a key with that email address in your keyring.  If you do, PGP will encrypt to that key.  If you don't, PGP will just send the email as if PGP was not being used. 

You may find this Quick Start Guide helpful.

The version that we currently are using is 10.0.0.  Just so I understand correctly.  The way it works now is emails are only encrypted when they are sent to this one client we send emails to.  Otherwise no other emails are encrypted.  That means that at some point in the past, the recipients public key was imported into the user's here keyring, and then it was signed with the users key?  Is that right?  Also i believe that when the recipient actually sends us an encrypted email, we still must put in a password to decrypt it.  So does all of this mean that we will have to reach out to the recipient and have them send us their public key when Im configuring this on the new users computer?

You can export that public key from your "old" install, and then import it into the new keyring.  Yes, the key would have been previously imported and signed by that user's key.  You have to decrypt the incoming encrypted email; which requires you to enter your passphrase, so that your private key can be decrypted for decryption of the email.

If you are sure that you only want encryption with this one individual, you can disable the default PGP messaging policies, and create one that will only encrypt to that one email address, and take no action on any email sent to any other address.  It sounds like this may be what was done with the old installation.  You may want to look at the old PGP Messaging policies that show how the PGP proxy will act on outgoing email.