PGP stands for Pretty Good Privacy, and is an encryption method for securely sharing sensitive files using a PGP key pair.
Follow these steps to set up PGP with One Model.
Step 1.
Ensure you have the permission CanCreatePgpConfigurations and or CanDownloadPgpConfigurations
Step 2.
To configure the PGP key pair in your One Model instance;
-
Navigate to Admin
-
Select Company
Step 3.
On the Company Settings page;
-
Scroll down the page to the PGP Configuration section.
-
If you already have a key pair setup;
-
Download PGP key
-
-
If you don’t already have a key pair, you will need to create a new PGP key;
-
Select create New PGP Key
-
Step 4.
Confirm the creation of a new PGP key: Create
Step 5.
Go back to the PGP Configuration section.
-
Download PGP key.
The PGP key will be able to be used to encrypt any of the files you are going to send to One Model.
Sending files
Now that you have a PGP key pair set up, you can use it to encrypt files before sending them to One Model. The files will be decrypted by One Model using the private key from your PGP key pair. This will be the case irrespective of how you send us the data, whether over SFTP or via the site Upload function.
Remember also that if you create a new key in the future, the old key pair will be removed and will no longer work, so any encryption scripts will need to be updated with the new key.
Using a PGP encryption tool
There are many different PGP encryption tools available to encrypt your files, whatever your chosen method, ensure that you are using the most recent PGP key pair you established or created with One Model.
In this example, we are going to use an opensource tool called GnuPG.
The first step is to import the key that you have downloaded onto the keyring using the following command:
gpg --import c:\pgp\Company1.onemodel.asc
This will add a recipient called Company1 to the keyring. From there we need to run an encryption over a file. This can be achieved using the following:
gpg --output pa0000.dat.gpg --recipient Company1 --trust-model always --encrypt pa0000.dat
Comments
0 comments
Please sign in to leave a comment.