Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Two cases of encryption

Created: 27 May 2013 | 1 comment
Gregoo's picture

Hi,

I'll try to figure how it's works. In first case I've created a user Bob on SEMS. I've imported 3 public keys files.
After that I changed owner for all 3 keys on Bob. Which key will be used? All or one of them?

Another case. I've created Mail Policy - Rule: when recipient is @ do action encrypt and I've pointed
Other Keys/Certificates and I imported 3 keys. The question is the same: Which key will be used? All or one of them?

Regards,
Grzegorz

Comments 1 CommentJump to latest comment

Brian_Ch's picture

1. Can you please better explain the situation.  Default is the primary Key that is set for Bob. What are these 3 keys used for? Does Bob have a primary key that was created at time of enrollment? The public key portion is used to decrypt the mail message, Which should be the receipient so when you say that you changed owner to Bob. Well if you are attempting to use email encryption you need to have a public portion of the recipients key, and Bob in order to encrypt needs to have both Private and Public key blocks in order to encrypt the message.

2. If you create a mail policy-rule to send email with action of encrypt and specify 3 specific keys. If all the keys are verified and available for mail encryption with messaging enabled on usage flags. Then it will encrypt to all 3 keys.  Any of the private key data for these keys will allow the recipient user to decrypt the message. 

 

Hope this helps. If you explain the situation a little better I might be able to help more.