Primeur Online Docs
Data Mover 1.20
Explore our productsData Mover 1.20Data Watcher 1.20Data ShaperPanorama 1.2.4DWAgent 2.0.0Data One Installation Manager
Data Mover 1.20
Explore our productsData Mover 1.20Data Watcher 1.20Data ShaperPanorama 1.2.4DWAgent 2.0.0Data One Installation Manager
  • πŸš€GETTING STARTED
    • What is Primeur Data Mover
    • Main features in Primeur Data Mover
    • Primeur Data Mover deployment
    • Navigate through Primeur Data Mover
  • πŸ‘₯Actors
    • Who are they?
    • Create your first actor
    • Configuring an actor - NEW! πŸš€
      • Users Tab
      • Groups Tab
      • VFS Tab
      • File Resource Tab
        • Creating File Resources
        • Navigating File Resources
        • How to use File Resources
      • Connection Contract Tab
      • Client Connections Tab
    • Searching files by Actor
    • Actor Lineage - NEW! πŸš€
      • Aggregation of flows by protocol - NEW! πŸš€
      • Lineage with connection contracts - NEW! πŸš€
      • Lineage with input, mediation and output contracts - NEW! πŸš€
      • Lineage with any contract type - NEW! πŸš€
  • πŸ“Contracts
    • What is a contract
    • Create your first contract
      • Create an Input Contract
        • Define the Contract Info
        • Associate the Contract with the Actor
        • Define the Contract Actions
        • Set the Contract Variables
      • Create a Connection Contract
        • Create a Contract Clause
        • Associate the VFS with File Processing Rules
        • File Processing Rules
    • Managing contracts - NEW! πŸš€
  • 🧱Workflows
    • What is a workflow
    • Create your first workflow template
      • Workflow template - Toolbar
      • Workflow template - Shape Repository Panel
      • Workflow template - Working Area
      • Workflow template - BPMN-Diagram
        • Variable types ---- review needed
      • Modeling elements
      • Editing Workflow Templates
    • How they work
    • Trigger types
    • Service Tasks
      • Configuring Service Tasks
      • Configuring Triggerable Service Tasks - NEW! πŸš€
      • Handling Process Variable
      • Spazio Selectors and Filebox Metadata management
      • Error Management
    • Workflows and contracts interaction
    • Workflows hacks you may need
    • System Workflow Templates
      • Input templates
      • Mediation templates
      • Output templates
    • Error Workflow Templates
    • DataFlow Instance Context (DFIC) πŸš€
  • πŸ”“Security
    • Identity and Access Management
    • Users & Groups
      • Setting the password policy
      • Creating Internal Users - NEW! πŸš€
      • Creating Internal Groups
      • Creating External Users
      • Creating External Groups
    • Key Stores and Trust Stores
      • Key Store - NEW! πŸš€
        • Creating a Key - NEW! πŸš€
        • Creating a Certificate - NEW! πŸš€
        • Importing a Key or a Certificate
        • Creating a Symmetric key
        • Examples
      • Trust Store - NEW! πŸš€
        • Importing Keys - NEW! πŸš€
        • Importing Certificates
      • Untrusted Cache - NEW! πŸš€
      • Trusting an element
        • When do I use the Keys tab?
        • When do I use the Certificates tab?
      • PGP Key Store / PGP Trust Store
        • Configuring the PGP Key Store
        • Importing keys into the PGP Trust Store
  • πŸ›ΈTRANSPORT PROTOCOLS AND CONNECTORS
    • Data Mover client and server roles
    • Client Connections
      • FTP connection
      • Client Connection: FTPS
      • Client Connection: SFTP
      • Client Connection: HTTP
      • Client Connection: HTTPS
      • Client Connection: PESIT
      • Client Connection: SMB v3 or later versions
      • Client Connection: POP3 IMAP
      • Client Connection: SMTP
      • Client Connection: PR4/PR4S
      • Client Connection: PR5
      • Client Connection: PR5S
      • Client Connection: HDFS
      • Client Connection: HDFSS
      • Client Connection: Amazon S3 - NEW! πŸš€
      • Client Connection: Google Cloud Storage
        • Credentials
      • Client Connection: Azure Blob Storage
      • Client Connection: IBM Sterling Connect:Direct
      • Appendix
    • Server Connections - NEW πŸš€
      • FTP
      • FTPS
      • SFTP
      • HTTP
      • HTTPS
      • PeSIT
      • PR4
      • PR5
      • PR5S
      • CD
    • Stopping all servers in one go
  • πŸ›°οΈDMZ GATEWAYS
    • DMZ Gateways
    • DMZ Clusters
  • 🎧FILE EVENT LISTENER
    • What is the File Event Listener
    • Configuring File Event Listeners
      • Setting the File Event Listener Engine
      • Defining a contract for the File Event Listener
      • Setting events to be monitored
    • RegEx Rules
    • Monitoring File Event Listeners
  • πŸ”ICAP
    • ICAP Engines
    • Configuring an ICAP Engine
    • Defining an ICAP rule
  • πŸ“šCLUSTERING
    • STENG, Clusters and Servers
    • Adding a cluster and a STENG
    • Deleting a STENG
  • πŸ•’MONITORING
    • Jobs
      • Details about Jobs - NEW! πŸš€
      • jobman.sh CLI
    • Job Manager
    • Job Queues
      • Managing Job Queues
    • File Transfers
      • Ongoing
      • Finished
      • Reports
    • File Transfers Rules
      • Configuring Rules
  • πŸ€“ADMINISTRATION
    • Storage Classes - NEW! πŸš€
      • Storage Class: File System - NEW! πŸš€
      • Storage Class: SMB v3 or later versions - NEW! πŸš€
      • Storage Class: Amazon S3 - NEW! πŸš€
      • Storage Class: Google Cloud Storage - NEW! πŸš€
      • Storage Class: Azure Blob Storage - NEW! πŸš€
    • Retention Classes
    • Virtual File Systems (VFS) - NEW! πŸš€
      • Creating a VFS - NEW! πŸš€
      • Configuring a VFS
      • Adding Virtual Paths
      • Modifying and Deleting a VFS
      • Searching files in all VFS
    • Advanced Settings
  • πŸ‘‘FILE MANAGER
    • Getting started
    • Logging into File Manager
    • Managing the File Manager - NEW! πŸš€
      • The list of results
      • Creating new folders
      • Uploading files
      • Downloading files - NEW! πŸš€
      • Searching for files and folders
      • Deleting files - NEW! πŸš€
      • Bulk actions - NEW! πŸš€
    • File Manager and VFS
    • Customizing File Manager externals
      • The configuration-wui.json file - NEW! πŸš€
      • How to customize the Login window and the logo
      • How to customize the footer
      • How to configure the Upload with Metadata option
      • How to customize bulk actions - NEW! πŸš€
  • πŸ§‘β€βš–οΈFILE ROUTING
    • What is File Routing - NEW! πŸš€
    • Routing Rules page
      • The Rules tab
      • The Categories tab
      • The Output tab
    • How to create a rule - NEW! πŸš€
      • Add metadata - NEW! πŸš€
      • Select ACTIONS
      • Select OUTPUTS
      • Policy for the selection of metadata rules
    • Configuration of the environment in Data One
      • Set up Storage Classes
      • Set up Retention Classes
      • Configure the Actor
      • Set up File Resources
    • Associate the Routing Rule to a Contract
    • Example
  • πŸ’¬LOGS & AUDIT
    • Logs - NEW! πŸš€
      • Logs options - NEW! πŸš€
      • Troubleshooting error analysis in Logs
    • Audit Options - NEW! πŸš€
      • Export audit logs - NEW! πŸš€
      • List of Audit entity types - NEW! πŸš€
      • Audit message codes - NEW! πŸš€
    • Log Notifiers - NEW! πŸš€
      • FEL message codes
  • πŸ“©NOTIFICATION CHANNELS
    • What are Notification Channels
    • Configuring the default Email Notification Channel
    • Configuring a new Email Notification Channel
    • Trusting Certificates
    • Managing Templates
      • Data Watcher Macros
      • Contract Macros
      • ICAP Macros
      • Central Log Macros
      • Email Templates
      • Editing default templates
      • Loading a new template
  • 🟣DATA MOVER + DATA WATCHER
    • Data Mover in a bundle with Data Watcher
    • Attributes - NEW! πŸš€
    • Cut-off Board
      • Cut-off Calendars
    • Dataflow Inquiry
  • 🟠DATA MOVER + DATA SHAPER
    • Data Mover in a bundle with Data Shaper
    • Monitoring
    • Execution History
    • Sandboxes
  • πŸ’»API
    • HTTP MFT Rest API
    • Job Manager APIs - NEW! πŸš€
    • SFTP Server sessions APIs - NEW! πŸš€
  • πŸ•ΉοΈCLI and Configuration files
  • 🧐HOW TO...
    • ... use different DNS names - NEW! πŸš€
    • ... configure a Cron Expression
    • ... create a Mediation Contract
    • ... create an Output Contract
    • ... configure an Application
    • ... customize a header
    • ... run searches in Data Watcher - NEW! πŸš€
    • ... use Data Shaper graphs in Data One contracts
    • ... modify DMCFG and deploy it
    • ... tune Data One data retention
  • πŸ—’οΈRELEASE NOTES
    • Data One 1.20.10
    • Data One 1.20.9
    • Data One 1.20.8
    • Data One 1.20.7
      • Data One 1.20.7.1
    • Data One 1.20.6
    • Data One 1.20.5
    • Data One 1.20.4
    • Data One 1.20.3
    • Data One 1.20.2
    • Data One 1.20.1
    • Data One 1.20.0
Powered by GitBook
On this page
  1. Security
  2. Key Stores and Trust Stores
  3. PGP Key Store / PGP Trust Store

Configuring the PGP Key Store

PGP key pair generation is needed when you want to manage end-to-end PGP envelopes. Depending on the target operation to be performed (digital signature, encryption), you must select the appropriate key type.

To generate a new RSA public/private key pair, go to Setup β†’ PGP Key Store β†’ New.

Field
Description

USER IDS (*)

Insert the user id

VALIDITY IN DAYS

Insert the number of days the key must be available

KEY LENGTH

Select the length of the key. Please note: a recommended β€˜key length’ should have key-length > subkey-length. Usually, 2048 is the recommended value for each asymmetrical algorithm in the list. Possible values: SIZE_1024 SIZE_2048 (default) SIZE_3072 SIZE_4096

TYPE (*)

Select the type of key. Possible values: RSA_GENERAL RSA_SIGN RSA_DSA

You can import an existing private keyring by clicking the Import button in Setup β†’ PGP Key Store β†’ Import.

A keyring can either be in an armor or binary format, and the system will automatically self-detect it.

Select the file and enter the password.

Make sure you have the password configured during secret creation!

Clicking the 3-dot icon on the right of the entry, you can view the details, delete, export, or create a sub key for your key or certificate.

In a PGP environment, it is often useful to preserve the master private key and operate using a subkey, signed with the master key. To generate a subkey, click the three-dot icon on the right of the master key and select the Create Sub Key option. In the PGP Key Store window, select the options:

Properties
Description

VALIDITY IN DAYS

Insert the number of days the key must be available

KEY LENGTH

Possible values: SIZE_1024 SIZE_2048 (default) SIZE_3072 SIZE_4096

TYPE

Select type. Possible values: RSA_GENERAL RSA_SIGN RSA_DSA RSA_ENCRYPT

Any Master/Sub-key combination is possible. Typically use:

  • RSA_GENERAL master β†’ RSA GENERAL sub-key

  • DSA master β†’ any ElGamal as sub-key

To export an existing private keyring, click the three-dot icon on the right of the master key and select the Export Key option. In the PGP Key Store window, select the options:

  1. Export Format: a. PEM b. DER

  2. Password and confirm Password.

  3. Click Save.

PreviousPGP Key Store / PGP Trust StoreNextImporting keys into the PGP Trust Store

Last updated 1 month ago

To view which sub-key is associated with a master key press the button on the left:

πŸ”“