search cancel

Encryption Management Server cannot import ECC PGP keys

book

Article ID: 175931

calendar_today

Updated On:

Products

PGP Command Line Encryption Management Server Gateway Email Encryption

Issue/Introduction

An ECC PGP key uses Elliptic-Curve Cryptography to create the key. PGP Command Line can create ECC PGP keys.

When you use Encryption Management Server to import an ECC PGP key, the key cannot be imported.

The following message is displayed in Encryption Management Server:

Import Failed
None of the desktop users could be imported. Please check the Administration log for details.

The Administration log shows a warning like this:

Not importing user "first.last <[email protected]>" (KeyID: 0x910992C7) because keys smaller than 1024 bits are not supported

Environment

  • Symantec Encryption Management Server 3.4.2 MP5 and below.
  • Symantec Encryption Desktop 10.4.2 and above.
  • PGP Command Line 10.4 and above.

Resolution

Upgrade to Encryption Management Server 10.5 or above.

If you cannot upgrade, as a workaround, users with Encryption Desktop 10.4.2 and above can import ECC PGP keys into their local keyring.