Endpoint Encryption

 View Only

  • 1.  encrypt (3064:key invalid)

    Posted Jul 15, 2015 05:08 PM

    Hi Guru,

    I got one weird situation. I used below command to encrypt file and it is successful.

    /opt/freeware/pgp/bin/pgp --  encrypt $1 --  recipient " "

    However, it failed when I changed command to below 2.

    /opt/freeware/pgp/bin/pgp -- encrypt $1 -- recipient AllBureau

    /opt/freeware/pgp/bin/pgp -- encrypt $1 -- recipient "AllBureau"

    AllBureau is the vendor keyID we loaded. When we list the key, it showed as AllBureau <xxx@yyy.com>.  xxx@yyy.com is vendor's email address.

    We are going to have another vendor's public key. So we need to be able to encrypt file using specific key. Could you help to let me know how to specific key in the command?

    Thanks in advance!

    Norman



  • 2.  RE: encrypt (3064:key invalid)

    Posted Jul 16, 2015 01:46 PM

    Norman,

    The key is invalid most likely because it has been imported and not been signed/verified or had trust set on the key.  Run the following commands:
    pgp --sign-key "AllBureau" --signer "YourKeyName" --sig-type local --passphrase "YourPassphrase"
    pgp --set-trust 0xABCD1234 --trust --complete

    Replace 0xABCD1234 with the key ID of the AllBureau key.  You can choose marginal trust instead of complete for the public key as well.  Once the key is signed and trusted, it should be able to be used for encryption.