what is signing keys !??

Mohammed

hi guys

 

I am just want to understand what is PM signing keys !??

and when should we back-them-up !? after we finish the installation of Policy Manager or after we do all the configurations !??

 

 

thanks,

mohammed

Ben

Hello Mohammed,

 

The signing key are used to secure the communication between the Policy Manager and the managed hosts. You can back them up as soon as they are in use.

 

To do that follow the instructions on page 50 of the admin guide.

Mohammed

Hi Ben
I have read about it,
correct me please if I am wrong

PM has two encryption keys in order to communicate with the clients or servers, Private and public.
PM uses public key to encrypt the messages and the client will use private key to decrypt them. so that mean when you deploy the installation, the PM will attach the private key to the installation packages. right ?

then what about the communication between the Policy Manager and the F-Secure.com to get the updates !?
what keys will be used !??

thanks,

Ben

Hello Mohammed,

 

Actually it is the other way around. PM signs using the private key and the clients(Workstations or servers ) are confirming the origin of the packages they received using the public key.

 

The updates coming from our Updates Servers are also signed. However this is not related to the administrative key pair used in the PM.

Mohammed

thanks a lot for your help

oudmaster

sir I have a question,

 

when the PM wants to send a message to the hosts, what key it will use to encrypt this message !?

 

 

thanks,

Ben

Policy Manager communicates (new policies, upgrades) with the hosts using the Admin key pair signing.

The keys themselves are encrypted.