PGP Keyserver Read Me
Version 7.0 for Windows NT/2000 and UNIX

Copyright © 1991-2002 by PGP Corporation. All Rights Reserved.

 

Thank you for using this PGP Corporation product. This Read Me file contains important information regarding this release of PGP Keyserver 7.0 for Windows NT/2000 and UNIX. PGP Corporation strongly recommends you read this entire document.

PGP Corporation welcomes your comments and suggestions. Please use the information provided in the Contacting PGP Corporation section to contact us.

Warning: Export of this software may be restricted by the U.S. Government.

 


What's in this file?

About PGP Keyserver 7.0
Licensing
System Requirements
Known Issues
Installation Instructions
Starting the PGP Keyserver
Starting the Replication Engine
Documentation
Contacting PGP Corporation
Copyright


About PGP Keyserver 7.0

PGP Keyserver 7.0 for Windows NT/2000 and UNIX offers numerous improvements as well as the following new features:


Licensing

PGP uses a license number system to determine what PGP features will be active on your computer. For complete information about PGP licensing and purchase options, go to https://store.pgp.com.

Important: PGP Keyserver requires a PGP Enterprise license.

PGP functionality depends on the type of license you purchase:


System Requirements

Windows NT/2000

To install PGP Keyserver on a Windows NT/2000 server:

UNIX

To install PGP Keyserver on a UNIX server:

Note: The latest recommended patches from Sun are REQUIRED for Solaris 7 support. They can be obtained as a single patch bundle at the following Web site: http://sunsolve.sun.com/pub-cgi/show.pl?target=patches/patch-access.


Known Issues
Installation Instructions

For detailed installation instructions, refer to the PGP Keyserver Administrator's Guide.

Note: If you are installing PGP and PGP Keyserver at the same time, install PGP first.

Windows NT/2000

PGP Keyserver is distributed in either a self-extracting file or on a CD-ROM.

To install the product from a CD-ROM:

  1. Start Windows.
  2. Insert the CD-ROM.
  3. Double-click the installation program icon found in the PGP Keyserver subdirectory.
  4. Follow the on-screen prompts.

To install the product from a downloaded self-extracting file:

  1. Start Windows.
  2. Download the PGP Keyserver installation program onto your computer’s hard drive.
  3. Double-click the installation program.
  4. Follow the on-screen prompts.

UNIX

PGP Keyserver is distributed as a Solaris package file. This section includes instructions to install the product for the first time and to upgrade from a previous version.

To install the product for the first time:

  1. Sign on as root.
  2. Change to the directory containing the package file.
  3. Run the command: pkgadd -d PGPkeyserv_7.0.0_Solaris.pkg

Run the post-install script:

  1. Run the command: cd /opt/PGPkeysrv/web/ ; ./config-wiz.pl
  2. Verify that the product is installed properly:
  3. Run the command: pkginfo -l PGPkeysrv

    The status should be "Completely Installed."

To upgrade from a previous version of the product:

  1. Sign on as root.
  2. Export the existing database.
    a. Stop the PGP Keyserver (use ps -fu root to locate the process ID, and use the kill command to send a SIGTERM signal to the PGP Keyserver: kill <process ID>).
    b. Change to the /opt/PGPcertd/bin directory.
    c. Use the PGPexport utility to export the database: ./pgpexport ../data /opt/dump.pgp
  3. Install the PGP Keyserver as you would for a brand new installation.
  4. Configure the PGP Keyserver as described in the Administrator's Guide and restart the program to institute the updated policies.
  5. Re-import the keys from the old database.
    a. Change to the /opt/PGPkeysrv/bin directory.
    b. Use the PGPimport utility to re-import the database: ./pgpimport /opt/dump.pgp ldap://localhost
  6. Re-disable any keys that were disabled in the old installation.

Starting the PGP Keyserver

Windows NT/2000

The PGP Keyserver starts automatically after installation and reboot.

UNIX

To start the PGP Keyserver after configuring it, use the Web Console's Restart button (Server Control panel) or run the SysV init script: /etc/init.d/pgpkeyserver start

Windows NT/2000 and UNIX

To view the PGP Keyserver's Web Console, enter the following URL in the location field of any Web browser: https://<hostname or IP address>[:<port>]/keyserver/

To test to see if the PGP Keyserver is running properly:

  1. Start PGP version 5.5 or later.
  2. Add the URL of the machine running PGP Keyserver to PGP's configuration by selecting PGP Options from PGPtray's popup menu (or the Options command from the Edit menu of PGPkeys).
  3. On the Servers page, add a new server:
    1. Enter a new domain or choose an existing one.
    2. Enter an LDAP server using the format: ldap://YOUR-HOST-NAME


  4. From PGPkeys, select any key from your list of keys, then select the Send Key to Server command on the Server menu. Be sure to select the name of your new PGP Keyserver. If the key is successfully sent to the PGP Keyserver, it is running properly. You can also use the Search screen in PGPkeys to search the keys on the server. Again, be sure to set the name of your new PGP Keyserver as the server to search.

Starting the Replication Engine

Windows NT/2000 and UNIX

If you installed the optional PGP Replication Engine component, you must install the PGP Keyserver on the slave servers. After you have installed the additional software, you must identify the hosts you want to replicate the database to and the replication log file before you start the PGP Replication Engine.

To do this:

  1. Display the Web Console by entering the following URL in the location field of any Web browser: https://<hostname or IP address>[:<port>]/keyserver/
  2. Click Replication, left side of console.
  3. Identify the PGP Keyservers you want to replicate the database to; for example, ldap://mirror.company.com.
  4. Identify the replication log file; for example, rep.log.
  5. Click Save Changes (top of console).
  6. Click Server Control (left side of Web Console).
  7. Click Restart under Replication (top right corner of Web Console).

See the PGP Keyserver Administrator's Guide for exact details on on the configuration parameters.


Documentation

The PGP Keyserver Administrator's Guide is included as a PDF file with the PGP Keyserver product. It can be viewed using the following instructions:

Documentation feedback is welcome. Send email to pgpdocs@pgp.com.


Contacting PGP Corporation

For general information about PGP Corporation, please visit the PGP Web site: www.pgp.com.

For Product Support or Customer Service issues, please go to the Support section of the PGP Web site.

For any other contacts at PGP, please go to the Contact Us section of the PGP Web site.


Copyright

Copyright © 1991-2002 by PGP Corporation. All Rights Reserved.