PGP: Message is blocked by policy - recipient key not found (PGP Encryption Desktop)
search cancel

PGP: Message is blocked by policy - recipient key not found (PGP Encryption Desktop)

book

Article ID: 153690

calendar_today

Updated On:

Products

Symantec Products

Issue/Introduction


When sending an email to a group of recipients, mail delivery fails and you receive a message similar to the following:

PGP: Message is blocked by policy - recipient key not found. Error code: [0xa101000c].

Resolution

This message is received when PGP Encryption Desktop is unable to find a key for one or multiple recipients in group list and then blocks the message from being sent. An advanced preference can be added to display the email addresses for recipients whose keys were not found. The email addresses are displayed in the Error Details of the Non-Delivery Receipt as shown below:

PGP: Message is blocked by policy - recipient key not found. Error code: [0xa101000c].

The original message is embedded in this non-delivery report. Click Send Again to see the original text and have the opportunity to resend the message. If the problem persists and you still receive another non-delivery report, please contact your administrator for details.

Error Details:
Your message cannot be delivered to the following recipient(s) because Symantec Encryption Desktop was unable to locate the necessary encryption key(s):

[email protected]
[email protected]
[email protected]

This advanced preference is available for both stand-alone and managed Symantec Encryption Desktop clients.

To enable the preference on a PGP Encryption Desktop stand-alone client

  1. Stop the PGP services by clicking the PGP Tray icon and selecting Exit PGP Services. Then click Yes.
  2. Browse to the PGP Corporation > PGP folder in the user's profile.

    Windows: Click Start and type %appdata% and press Enter. Then click the PGP Corporation > PGP folder.

  3. Right-click the PGPprefs.xml file and select Open With > WordPad. The PGP preferences are displayed.
  4. Add the following entry to the PGPprefs.xml file:

    <key>mailShowKNFRecipientsInNDR</key>
    <true></true>
  5. Click File > Save.
  6. Close Wordpad.
  7. Restart PGP Services by clicking Start > All Programs > Startup PGPtray.exe.

To enable the preference for Symantec Encryption Management Server 10.x managed clients

  1. Login to the Symantec Encryption Management Server admin interface.
  2. Click Consumers > Consumer Policy.
  3. Click the desired policy to edit.
  4. On the Consumer Policy Options screen select Edit next to General.
  5. Scroll down and click Edit Preferences.
  6. In the Pref Name: field type mailShowKNFRecipientsInNDR
  7. Leave the Type as Boolean .
  8. In the Value field, type true.
  9. Click Save.

 

 

Additional Information

157981 - Encrypting to Distribution Lists with Symantec Encryption Desktop (PGP Desktop)

Powered by Wolken Software