Manual Processing for PGP Private Keys

The fips script test function shows the public or private keys that do not work when executing in FIPS mode. So you must review the definitions to make sure that you are not using a key that is not supported.

When running in FIPS mode, PGP private keys fail under the following circumstances:
  • When using one of the following algorithms: El Gamal, CAST5, MD2, MD5, RipeMD
  • When the key size is less than 2048 bits.

PGP private keys are defined for transfers and servers.

Procedure

  • Define the PGP private key to be used one of two ways:
    • Use a Default Private Key. When this is selected, MFT selects the default key. You must ensure that the default key is a supported key.
    • Specify a PGP private key to use. You must review all transfer definitions that use PGP to make sure that a supported PGP private Key is used. You must also review all server definitions that use PGP to make sure that a supported PGP private key is used. Navigate to the following page to configure the PGP private key to use for these services.
      • Navigate to Servers > Manage Servers, or
      • Navigate to Transfers > Manage Transfers