Video Screencast Help

SDE files deleted

Created: 07 Mar 2014 • Updated: 07 Mar 2014 | 7 comments
This issue has been solved. See solution.

Hi there,

a user in my company happened to accidentally delete the PGP folder in the Documents directory.

How important are the two files that are stored in that folder? Is it possible to recreate them?

Thank you

Roberto

Operating Systems:

Comments 7 CommentsJump to latest comment

Alex_CST's picture

If that is where you store your keys, that user is in a bit of a pickle.  They will have deleted their public and private keys.  If you run in CKM and dont have that users keys on the Universal Server then there's no recourse but to recreate and redistribute the new keypair.  If you're referring to the AppData folder, you can juts log off and log back on and itll recreate it.

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

ferrob00's picture

I see, thank you Alex.

It is weird though, that very important files are stored in the open, where the users can easily delete them accidentally, while files that can be easily recreated are protected in a hidden folder. The other way around would make more sense to me.

We're running in GKM anyhow, and you say it should be better.

How can I export the keys from the SEMS and install it on the user's laptop?

 

Thank you

Roberto

 

Alex_CST's picture

The reason they're there is because then they can be easily distributed.  You have the power to change the location of the storage.  The default is in My Documents.  A lot of larger organisations simply put it in SKM so there are no keys on the endpoints at all, and all key exchange is handled by the Management Server.

To export that users keypair go to Keys > Managed Keys and click on the down arrow next to their keypair.   I would recommend however that you reconfigure your environment to be SKM unless users are always doing key exchanges themselves (manually)

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

ferrob00's picture

Thank you again Alex, I will talk to support to plan for miggrating to SKM.

In the meantime, I did what you suggested, but I got a .asc file, while in the PGP folder there are two files: pubring.pkr and secring.skr. This seems to be true for all the users, and I expected the same for the user who deleted that PGP folder...

Thanks

Roberto

 

Alex_CST's picture

An ASC file can be imported into PGP.  This will then create the pkr and skr files.  Just think of an ASC file as the key PAIR and the pkr as public key RING and secure key RING.

Please mark posts as solutions if they solve your problem!

http://www.cstl.com

dcats's picture

Hi Roberto,

As it is a GKM, re-enrolling the user should retrieve the key from the server.
HOW TO: Re-enroll Symantec Encryption Desktop for Windows Clients - HOWTO42029.

Rgs,
dcats

SOLUTION