Video Screencast Help

pgp keys

Created: 14 Mar 2011 • Updated: 27 Mar 2011 | 23 comments
This issue has been solved. See solution.

I have the new PGP 10 and I cannot add the new email address for my friend in Russia.  Do I need him to send a new email using his encryption key to enable his new address and key to be added to my key pairs?

Comments 23 CommentsJump to latest comment

Tom Mc's picture

Only the owner of a key can add a new User ID to include a new email address; this is because only the owner of the key has the private key needed for this update.  Your friend should add a new User ID to the key for the new email address, and then send you a copy of his/her updated public key; or place a copy of the updated key on a keyserver, such as the Global Directory, so you can download the updated key.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

SOLUTION
pgppirate's picture

I have received many "PGP Alerts"  stating the "The server yi-in-f109.1e100.net has presented an authorization certificate which is not valid for the following reason:

Server yi-in-f109.1e100.net presents a TLS certificate for a domain name which does not match (pgp.gmail.com)"  What does this mean?

Tom Mc's picture

It means that PGP is able to make the secure connection to your email server (that your email client would other wise be doing), but that since the name of fhe certificate used for the server is different than the name of the server, PGP is asking you to confirm that you want to accept this as a valid certificate for use.  This is pretty common, and PGP will not ask again if you select the option of always accepting the certificate. 

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

I continue to receive PGP alerts.  In my message box is shows that these are coming from my friend.  The certificate says that it is exportable, but I cannot find a way to attach this new certificate to my key ring.

Tom Mc's picture

This concern appears to be in regard to importing a key - this Knowledge Base Article should help.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

When I follow the directions for adding from an x.509 certificate the first step is to select file > open, but the only thing that open is a document file and there is no Import certificate assistant option.

pgppirate's picture

Also when I find the import certificate assistant a notice appears that I have no certificates in my Windows certificate store.  How do I get a certificate in the Windows store?

Tom Mc's picture

I'd suggest that you start reading about x.509 certs in the User's Guide, starting on page 57.  There is more later in the manual that can be found by searching for 509.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

I read and followed everything concerning 509 certs in the users guide, and still no luck.  When I click to the Import Certificate Assistant, I get a message that "PGP Desktop could not find any certificates to import in your Windows Personal Certificate Store".  What is and where is the Windows Certificate Store and how do I move the certificates into this file so that I can import it.  The drag and drop function does not work with this PGP.

Tom Mc's picture

I'd suggest using the Import option instead of Import Personal Certificate.  You should also be able to copy the cert and paste it by right clicking anywhere in All Keys and selecting Paste.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

I tried to copy certificate from my "PGP Messaging" file, but nothing happens.  In All Keys I get the "Paste" function by right clicking, but nothing happens and the "Paste" indicator disappears.  Would it help if I copy my keys and then uninstall PGP and reinstall, perhaps there was a malfunction in the download that has caused all these problems.  I have no "Drag and Drop" function at all in any of the PGP areas.  This is unusual as I used it all the time in PGP 8.0.

pgppirate's picture

I have followed the directions in the Users guide as well as information found the the articles.  I have several certificates in my PGP Messaging file.  When I hit the personal certificate assistant option a message appears that "PGP Desktop could not find any certificates to import in your Windows Personal Certificate Store".  What does this mean and where do I find my "Windows Personal Certificate Store"  How do I move the certificate in the messaging box to this Windows Personal Certificate Store?

Tom Mc's picture

You should be using an admin user account - are you?

It may also help if you save the cert from your email message to your desktop (or some other location you may prefer) and then try from that saved copy.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

I do not know how to check to see if I am using an Admin user account.  I do not receive the cert via email message it simply appears in the messaging tab of PGP and I cannot move, I can only delete these messages.

pgppirate's picture

I finally found the properties to check the admin status.  Yes, I am the administrator, but many of the keys do not work and I cannot change anything, move anything, it is very frustrating.

Tom Mc's picture

Do you have your keyrings in the default location of

C:\Users\<username>\Documents\PGP
keyrings:
pubring.pkr & secring.skr
default backup keyrings:
pubring-bak.pkr & secring-bak.skr

If you don't know, you can right click on All Keys in the Keys module of PGP Desktop and select Properties to see where they are.  Regardless of the location you are using, you may want to right click on each of the keyrings, select properties, and make sure the General Tab does not have Read Only set, and that the Security Tab shows you as having Full Control.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

kingrings are saved under c:\users\\Doc\PGP.  I checked to see which version I am using and the PGP information indicates I have PGP 10.1.00 (Build 860) PGP SDK 4.0.1 if this information helps.  I am unable to right click on the key rings themselves.  Under PGP Properties the General Tab has no "Read Only" and there is no Security Tab.  Right click on the keys gives me a fingerprint and descrition only - no tabs for General etc.

Tom Mc's picture

What Windows version are you using?

Please explain your being "unable to right click on the key rings"

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

I hve Windows 7.   On the main page I can right click on Keys or Keyrings and I get a window showing where the keys are stored.  But nothing happens when I right click on the keys.  If I click on Properties I get the fingerprint window and again nothing happens with a right click.

pgppirate's picture

Right click - "All Keys", selected "Properties",  Window appears titled "PGP Keyring Properties", shows:  Public - c:\user etc.,  Privates - c:\user etc., - right click, select "Key Properties"  gives a widow with a list as follows:

Undo, Cut, Copy, Paste, Delete, Select All, Right to left reading order, Show unicode control characters, Insert Unicode Control Characters, all of which are shaded.

Tom Mc's picture

These are your keyrings that you need to be right clicking on:
pubring.pkr & secring.skr

They are located here:

C:\Users\<username>\Documents\PGP

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &

pgppirate's picture

I also have Norton Protection.  Several months ago a Norton employee used a remote server to check all Norton settings to make sure that nothing would interfer with PGP.  In the past I had problems with Norton wanting to block/deny all encrypted messages.

Tom Mc's picture

You can read the PGP Release Notes (in your computer's Start menu for any Norton setting adjustments you need for your version of PGP.

When you consider your issue resolved, please click Mark As Solution on the most helpful response.

Search the Knowledge Base &