Rotating the PGP key

The PGP key used to import files should be rotated once a year. PGP key changes do not require application server and job scheduler machine restart and can be done anytime.

  1. Select Maintenance > System Administration > PGP Key Generator.
  2. In the drop-down, select the PGPIMPORTPRIVATEKEY with a description of "Default PGP Private Key". This is the default selection.
    Note: There is also a PGPFTPPRIVATEKEY available which is used for data migrations. The usage of this key is explained further in the Data Migration chapter of this document.
  3. Click Generate a New Key to generate a new PGP key.
  4. Click Export Key to save the new PGP key.
    The displayed public key is saved to a public.asc file. The private key is saved to the Sensitive Data Configuration form with a configuration type of PGPIMPORTPRIVATEKEY.
See File Encryption Using the PGP Library for details on using PGP encryption.