Video Screencast Help

PGP email communicate with Secude

Created: 21 Jul 2011 | 1 comment
alex wang 1's picture

One client want to encrypt their email with PGP desktop email or gateway email. They have a very important partner who is using the SECUDE. The SECUDE encode is S/MIME. The partner used the Microsoft CA certificate to integrate with the SECUDE.  However the partner had ten thousands of end users. It’s impossible to enforce end users to import the PGP key. So, how to communicate between PGP and SECUDE?  Could PGP support the CA certificate, whatever desktop email or gateway email?

Anyone can help me? Thanks!

Comments 1 CommentJump to latest comment

Tom Mc's picture

This is from the PGP Desktop User's Guide:

Using the Import Certificate Assistant
X.509 certificates can be imported into PGP Desktop from files, the Windows Personal Certificate store, or smart cards. Even smart card-based certificates which appear in your Windows Certificate store may be imported. The Import Certificate Assistant guides you through the importation process.
When importing certificates from files, the certificate can only be imported from a file with a PEM, PFX, P7b, or P12 extension.
Notes: When using certificates from the Windows Personal Certificate store, you may get prompted for your certificate's password or PIN by Windows itself (or the third-party smart card software, if using smart card-based Windows Personal Certificates). Some operations, such as changing the certificate's password, are not permitted from within PGP Desktop when using certificates from the Windows Personal Certificate store. Use the Windows (or smart card) software for performing such operations.
57
PGP® Desktop for Windows Managing PGP Keys
To import a certificate using the Import Certificate Assistant
Before You Begin: Make sure that you know the passphrase for the
certificate that you are importing.
1 Start the Assistant by:
•    Selecting File > Open.
•    Selecting File > Import Personal Certificates.
•    Dragging the file containing the public key into the PGP Keys window
2 If you are using PGP Desktop in a PGP Universal Server-managed
environment, and your administrator has defined that you can choose the
method to import the certificate, select:
•    Onto an existing key—the certificate is added to a key that is already
in your keyring.
•    As new PGP key(s)—a new PGP key is created using the imported
certificate.
•    As PGP X.509 wrapper key(s)—a new PGP key is created using the
imported certificate. PGP Desktop treats the new key as an X.509
certificate.
3 After you make your selection, click Next. Either the Certificate Passphrase
Entry screen or the PGP Enter Passphrase dialog box displays.
4 Provide the password for the certificate, then click Next.
•    If you are importing the certificate using the Onto an existing key
option, the Select Key screen displays. Go to the next step.
•    If you are importing the certificate using the As new PGP key(s)
option, the key is generated. Click Finish. The process is complete.
•    If you are importing the certificate using the As PGP X.509 wrapper
key(s) option, the Select key(s) dialog box displays. Click to select the
key, click Import, and the PGP X.509 wrapper key is generated. The
process is complete.
5 To complete importing the certificate using the Onto an existing key
option, from the Select Key dialog box, select the key onto which you
would like to import the certificate, then type the password for the key.
Click Next.
6 The Key Generation Progress dialog box is displayed as the certificate is
imported onto the key.
7 Click Finish. The process is complete.
58
PGP® Desktop for Windows Managing PGP Keys
Importing X.509 Certificates Included in S/MIME Email Messages
If an X.509 certificate is included in an S/MIME email message sent to you, you can have PGP Desktop import the certificates to your key ring. The same settings you have specified when public keys are found apply to these certificates. If specified, PGP Desktop extracts and then imports the X.509 certificate to your keyring. If you want to encrypt email using imported certificates, be sure to manually sign the certificate.
To import X.509 certificates, choose Tools > Options and select the Keys tab. Then select Ask to save to my keyring or Save keys to my keyring.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &