If you need to transfer files to and from PGP Encryption Server, you will need to use SCP with key based authentication.

If you are happy to use a command line utility, you can use the utility included with PuTTY or the one included with OpenSSH for Windows. Please see article 153592 - Access the PGP Encryption Server by using SSH (Symantec Encryption Management Server) for details.

If you wish to use a graphical Windows application you can use the open source WinSCP application or the free FileZilla application. This article outlines how to use WinSCP.

PGP Encryption Server 3.4.2 and above.

Before you begin, you will need to have created a public and private SSH key and to have imported the public key into PGP Encryption Server. Please see article 153592 - Access the PGP Encryption Server by using SSH (Symantec Encryption Management Server) for details.

1. Download a copy of WinSCP from here and install it with its default settings. Choose to launch WinSCP immediately after installation completes.
2. At the Login window, complete the following fields in the Session section:
   • File protocol: SCP
   • Host name: The FQDN or IP address of Encryption Management server. For example, keys.example.com.
   • Port number: Keep the default of 22.
   • User name: root
   • Password: Leave this field empty
3. Click on the Advanced button to open the Advanced Site Settings window.
4. Browse to SSH / Authentication in the left part of the window and click on the ... button to browse to the Private key file.
5. Select the private key. This can be a PuTTY *.ppk format file or an OpenSSH format private key file created by the Windows 10 ssh-keygen utility.
6. If you select an OpenSSH format file, WinSCP prompts you to convert it to PuTTY format and save the converted key to a *.ppk file.
7. Click on the OK button to close the Advanced Site Settings window.
8. Click on the Save button to save the session.
9. You are prompted to give the session a name. By default the name format is username@hostname. For example, root@keys.example.com.
10. Click on the Login button to connect to Encryption Management Server.
11. The first time you connect you are prompted to add the host's key to the cache. Click the Yes button.
12. The session window shows the local machine directories on the left and the remote machine directories on the right.
13. The first time you connect, you will be taken to the /root directory on the Encryption Management Server. Click on the parent directory icon (..) to browse to the top level directory and from there you can navigate to the directory you wish to view.
14. You can transfer files from one machine to the other by using the mouse to drag and drop.
15. The next time you connect, WinSCP will open the directory on both the local and remote machine that you were last viewing.​